Microsoft.Sql servers/vulnerabilityAssessments 2020-11-01-preview

The servers/vulnerabilityAssessments resource type can be deployed to: Resource groups.

To learn about resource group deployments, see Bicep or ARM template.

Template format

To create a Microsoft.Sql/servers/vulnerabilityAssessments resource, add the following Bicep or JSON to your template.

resource symbolicname 'Microsoft.Sql/servers/vulnerabilityAssessments@2020-11-01-preview' = {
  name: 'default'
  properties: {
    recurringScans: {
      emails: [ 'string' ]
      emailSubscriptionAdmins: bool
      isEnabled: bool
    }
    storageAccountAccessKey: 'string'
    storageContainerPath: 'string'
    storageContainerSasKey: 'string'
  }
}

Property values

servers/vulnerabilityAssessments

Name Description Value
type The resource type

For Bicep, set this value in the resource declaration.
'Microsoft.Sql/servers/vulnerabilityAssessments'
apiVersion The resource api version

For Bicep, set this value in the resource declaration.
'2020-11-01-preview'
name The resource name

See how to set names and types for child resources in Bicep or JSON ARM templates.
'default'
properties Properties of a server Vulnerability Assessment. ServerVulnerabilityAssessmentProperties

ServerVulnerabilityAssessmentProperties

Name Description Value
recurringScans Properties of a Vulnerability Assessment recurring scans. VulnerabilityAssessmentRecurringScansProperties
storageAccountAccessKey Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall string
storageContainerPath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). string (required)
storageContainerSasKey A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall string

VulnerabilityAssessmentRecurringScansProperties

Name Description Value
emails Specifies an array of e-mail addresses to which the scan notification is sent. string[]
emailSubscriptionAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators. bool
isEnabled Recurring scans state. bool

Quickstart templates

The following quickstart templates deploy this resource type.

Template Description
SQL logical server.

Deploy to Azure
This template allows you to create SQL logical server.