This Azure SQL article will discuss the quick steps to configure Azure SQL Database auditing.
Table of Contents
How Is Azure SQL Database Auditing Configured?
You can easily configure the Azure SQL Database auditing in the Azure Portal using a few easy steps as below.
1. Log in to the Azure Portal (https://portal.azure.com/)
2. On your Azure SQL Database page, on the left navigation, click on Auditing, which is present under the Security heading. You can click on the View Server settings link to view or modify the settings as highlighted below.
3. Now, to enable the Azure SQL Auditing, switch Auditing to ON.
4. You must choose the audit log destination to store or write the audit logs. The options are Storage account, Log Analytics, and Event Hub. Based on your requirements, you can click on the Configure option. After configuring the Audit log destination, you need to click on the Save button to save the changes.
5. Now, if you want to configure the Audit Log Destination as a Storage account or write the audit logs to the storage account, click on the Configure option.
6. On the Storage settings window, provide the below details.
- Subscription: Provide a valid subscription that you want to use here.
- Storage account: Select an existing storage account, or if you don’t have one, click on the Create button to create a new one.
- Retention days: You can select specific days based on your requirements by sliding the Retention (Days) slider. If you won’t change anything, the default value for the Retention days is zero, meaning unlimited retention days.
- Storage access key: Select Primary or Secondary based on your need.
Finally, click on the OK button to Save the changes.
7. If you choose the Audit Log Destination as the Log Analytics option, click the Configure option. On the Log Analytics Workspaces window, click the + Create New Workspaces button to create a new Log Analytics workspace, or you can select an existing workspace if you already have one. You can also select the default workspace if you want.
If you want to select the Audit Log Destination as the Event Hub, then click on the Configure option and the Select Event Hub window, you need to provide the below details
- Subscription: Select a valid subscription that you want to use here.
- Event hub namespace: You need to provide the Event hub namespace.
- Event Hub name: It is optional, but if you want, you can provide a name for it.
- Event hub Policy name: You must provide the Event hub Policy name.
Finally, click on the OK button.
Once You have configured any of the Audit Log Destination, finally, click on the Save button on the SQL Database page. This is how to configure Azure SQL Database Auditing.
FAQs
Where is the output of Azure SQL database auditing stored?
Answer: Azure storage account
You may also like following the articles below
Conclusion
In this Azure SQL article, we discussed how to configure Azure SQL Database Auditing. Thanks for reading this article !!!
I am Rajkishore, and I am a Microsoft Certified IT Consultant. I have over 14 years of experience in Microsoft Azure and AWS, with good experience in Azure Functions, Storage, Virtual Machines, Logic Apps, PowerShell Commands, CLI Commands, Machine Learning, AI, Azure Cognitive Services, DevOps, etc. Not only that, I do have good real-time experience in designing and developing cloud-native data integrations on Azure or AWS, etc. I hope you will learn from these practical Azure tutorials. Read more.
