Microsoft.Sql managedInstances/databases/vulnerabilityAssessments 2020-02-02-preview

The managedInstances/databases/vulnerabilityAssessments resource type can be deployed to: Resource groups.

To learn about resource group deployments, see Bicep or ARM template.

Template format

To create a Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments resource, add the following Bicep or JSON to your template.

resource symbolicname 'Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments@2020-02-02-preview' = {
  name: 'default'
  parent: resourceSymbolicName
  properties: {
    recurringScans: {
      emails: [
      emailSubscriptionAdmins: bool
      isEnabled: bool
    storageAccountAccessKey: 'string'
    storageContainerPath: 'string'
    storageContainerSasKey: 'string'

Property values


Name Description Value
type The resource type

For Bicep, set this value in the resource declaration.
apiVersion The resource api version

For Bicep, set this value in the resource declaration.
name The resource name

See how to set names and types for child resources in Bicep or JSON ARM templates.
parent In Bicep, you can specify the parent resource for a child resource. You only need to add this property when the child resource is declared outside of the parent resource.

For more information, see Child resource outside parent resource.
Symbolic name for resource of type: databases
properties Properties of a database Vulnerability Assessment. DatabaseVulnerabilityAssessmentProperties


Name Description Value
recurringScans Properties of a Vulnerability Assessment recurring scans. VulnerabilityAssessmentRecurringScansProperties
storageAccountAccessKey Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. string
storageContainerPath A blob storage container path to hold the scan results (e.g. It is required if server level vulnerability assessment policy doesn't set string
storageContainerSasKey A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. string


Name Description Value
emails Specifies an array of e-mail addresses to which the scan notification is sent. string[]
emailSubscriptionAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators. bool
isEnabled Recurring scans state. bool