SQL threat alert policy is missing email recipients Affecting Database service in Azure

Snyk CCSS

Monitoring / Databases

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CSA-CCM

Snyk ID SNYK-CC-00536
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

Threat detection alerts may not be delivered to the analysts.

How to fix?

Set emailAddresses attribute.

Terraform

azurerm_mssql_server_security_alert_policy

References

Configure Advanced Threat Protection in Azure SQL Managed Instance