pulumi-azure-kotlin/com.pulumi.azure.synapse.kotlin/SqlPoolSecurityAlertPolicyArgs

SqlPoolSecurityAlertPolicyArgs

data class SqlPoolSecurityAlertPolicyArgs(val disabledAlerts: Output<List<String>>? = null, val emailAccountAdminsEnabled: Output<Boolean>? = null, val emailAddresses: Output<List<String>>? = null, val policyState: Output<String>? = null, val retentionDays: Output<Int>? = null, val sqlPoolId: Output<String>? = null, val storageAccountAccessKey: Output<String>? = null, val storageEndpoint: Output<String>? = null) : ConvertibleToJava<SqlPoolSecurityAlertPolicyArgs>

Manages a Security Alert Policy for a Synapse SQL Pool.

Example Usage

resources:
  example:
    type: azure:core:ResourceGroup
    properties:
      name: example-resources
      location: West Europe
  exampleAccount:
    type: azure:storage:Account
    name: example
    properties:
      name: examplestorageacc
      resourceGroupName: ${example.name}
      location: ${example.location}
      accountTier: Standard
      accountReplicationType: LRS
      accountKind: StorageV2
      isHnsEnabled: 'true'
  exampleDataLakeGen2Filesystem:
    type: azure:storage:DataLakeGen2Filesystem
    name: example
    properties:
      name: example
      storageAccountId: ${exampleAccount.id}
  exampleWorkspace:
    type: azure:synapse:Workspace
    name: example
    properties:
      name: example
      resourceGroupName: ${example.name}
      location: ${example.location}
      storageDataLakeGen2FilesystemId: ${exampleDataLakeGen2Filesystem.id}
      sqlAdministratorLogin: sqladminuser
      sqlAdministratorLoginPassword: H@Sh1CoR3!
      aadAdmin:
        - login: AzureAD Admin
          objectId: 00000000-0000-0000-0000-000000000000
          tenantId: 00000000-0000-0000-0000-000000000000
      identity:
        type: SystemAssigned
      tags:
        Env: production
  exampleSqlPool:
    type: azure:synapse:SqlPool
    name: example
    properties:
      name: examplesqlpool
      synapseWorkspaceId: ${exampleWorkspace.id}
      skuName: DW100c
      createMode: Default
  auditLogs:
    type: azure:storage:Account
    name: audit_logs
    properties:
      name: examplesa
      resourceGroupName: ${example.name}
      location: ${example.location}
      accountTier: Standard
      accountReplicationType: LRS
  exampleSqlPoolSecurityAlertPolicy:
    type: azure:synapse:SqlPoolSecurityAlertPolicy
    name: example
    properties:
      sqlPoolId: ${exampleSqlPool.id}
      policyState: Enabled
      storageEndpoint: ${auditLogs.primaryBlobEndpoint}
      storageAccountAccessKey: ${auditLogs.primaryAccessKey}
      disabledAlerts:
        - Sql_Injection
        - Data_Exfiltration
      retentionDays: 20
Content copied to clipboard

Import

Synapse SQL Pool Security Alert Policies can be imported using the resource id, e.g.

$ pulumi import azure:synapse/sqlPoolSecurityAlertPolicy:SqlPoolSecurityAlertPolicy example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.Synapse/workspaces/workspace1/sqlPools/sqlPool1/securityAlertPolicies/default
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(disabledAlerts: Output<List<String>>? = null, emailAccountAdminsEnabled: Output<Boolean>? = null, emailAddresses: Output<List<String>>? = null, policyState: Output<String>? = null, retentionDays: Output<Int>? = null, sqlPoolId: Output<String>? = null, storageAccountAccessKey: Output<String>? = null, storageEndpoint: Output<String>? = null)

Properties

Link copied to clipboard
val disabledAlerts: Output<List<String>>? = null

Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action.

Link copied to clipboard
val emailAccountAdminsEnabled: Output<Boolean>? = null

Boolean flag which specifies if the alert is sent to the account administrators or not. Defaults to false.

Link copied to clipboard
val emailAddresses: Output<List<String>>? = null

Specifies an array of email addresses to which the alert is sent.

Link copied to clipboard
val policyState: Output<String>? = null

Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific SQL pool. Possible values are Disabled, Enabled and New.

Link copied to clipboard
val retentionDays: Output<Int>? = null

Specifies the number of days to keep in the Threat Detection audit logs. Defaults to 0.

Link copied to clipboard
val sqlPoolId: Output<String>? = null

Specifies the ID of the Synapse SQL Pool. Changing this forces a new resource to be created.

Link copied to clipboard
val storageAccountAccessKey: Output<String>? = null

Specifies the identifier key of the Threat Detection audit storage account.

Link copied to clipboard
val storageEndpoint: Output<String>? = null

Specifies the blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.

Functions

Link copied to clipboard
open override fun toJava(): SqlPoolSecurityAlertPolicyArgs