Azure Synapse SQL Pool Vulnerability Assessment Baseline
This page shows how to write Terraform and Azure Resource Manager for Synapse SQL Pool Vulnerability Assessment Baseline and write them securely.
azurerm_synapse_sql_pool_vulnerability_assessment_baseline (Terraform)
The SQL Pool Vulnerability Assessment Baseline in Synapse can be configured in Terraform with the resource name azurerm_synapse_sql_pool_vulnerability_assessment_baseline
. The following sections describe how to use the resource and its parameters.
Example Usage from GitHub
An example could not be found in GitHub.
Parameters
The following arguments are supported:
name
- (Required) The name which should be used for this Synapse SQL Pool Vulnerability Assessment Rule Baseline.rule_name
- (Required) The ID of the vulnerability assessment rule.sql_pool_vulnerability_assessment_id
- (Required) The ID of the Synapse SQL Pool Vulnerability Assessment. Changing this forces a new Synapse SQL Pool Vulnerability Assessment Rule Baseline to be created.
baseline
- (Optional) One or morebaseline
blocks as defined below.
A baseline
block supports the following:
result
- (Required) Specifies a list of rule baseline result.
In addition to the Arguments listed above - the following Attributes are exported:
id
- The ID of the Synapse SQL Pool Vulnerability Assessment Rule Baseline.
Explanation in Terraform Registry
Manages a Synapse SQL Pool Vulnerability Assessment Rule Baseline.
Tips: Best Practices for The Other Azure Synapse Resources
In addition to the azurerm_synapse_workspace, Azure Synapse has the other resources that should be configured for security reasons. Please check some examples of those resources and precautions.
azurerm_synapse_workspace
Ensure to enable the managed virtual network
It is better to enable the managed virtual network, which is disabled as the default.
Microsoft.Synapse/workspaces/sqlPools/vulnerabilityAssessments/rules/baselines (Azure Resource Manager)
The workspaces/sqlPools/vulnerabilityAssessments/rules/baselines in Microsoft.Synapse can be configured in Azure Resource Manager with the resource name Microsoft.Synapse/workspaces/sqlPools/vulnerabilityAssessments/rules/baselines
. The following sections describe how to use the resource and its parameters.
Example Usage from GitHub
An example could not be found in GitHub.
Parameters
apiVersion
required - stringname
required - stringThe name of the vulnerability assessment rule baseline (default implies a baseline on a Sql pool level rule and master for workspace level rule).
properties
requiredbaselineResults
required arrayresult
required - arrayThe rule baseline result
type
required - string