Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

About The Device

Azure SQL Database is a relational database and fully managed platform as a service (PaaS). Azure SQL Database can create a highly available and high-performance data storage layer for the applications and solutions in Azure.

Device Information

 Entity

Particulars

Vendor Name

Microsoft

Product Name

Azure SQL 

Type of Device

Cloud

Collection Method

Log Type

 Ingestion label

Preferred Logging Protocol

Log Collection Method

Data Source

 Azure SQL

 AZURE_SQL

JSON

CyberHub

https://cloud.google.com/chronicle/docs/reference/feed-management-api#azure_blobstore  

Device Configuration

 Prerequisites:

  1. Azure subscription that you can sign in to.

  2. Azure Event Hub.

Reference URLs:

How to configure Event Hub: Azure Quickstart - Create an event hub using the Azure portal - Azure Event Hubs

Configurations Steps:

  1. Log In to Azure Portal i.e https://portal.azure.com/

  2. Navigate to Auditing under the Security heading in your SQL database or SQL server pane.

Screenshot 2022-10-20 at 7.12.04 PM-20240404-110348.png

  1. If you prefer to set up a server auditing policy, you can select the View server settings link on the database auditing page. You can then view or modify the server auditing settings. Server auditing policies apply to all existing and newly created databases on this server.

image-20240214-085430-20240404-110347.png
  1. If you prefer to enable auditing on the database level, switch Auditing to ON. If server auditing is enabled, the database-configured audit exists side-by-side with the server audit.

  2. You have multiple options for configuring where audit logs are stored. You can write logs to an Azure storage account or to Event Hub.

image-20240214-085800.png
  1. To configure writing audit logs to an Event Hub, select Event Hub. Select the Event Hub where logs will be written and then click Save. Be sure that the event hub is in the same region as your database and server.

image-20240219-090049-20240404-110346.png

Get Azure Event Hub Credentials: Get Credentials of Azure Storage and Azure EventHub

Integration Parameters

Parameters required from customer for Integration.

Property

Description

Logging Source

Select EventHub

eventHubConnectionString

Event hub connection string

consumerGroupName

Optional and used if consumer Group is other than default

Account Key

Access Key to access storage account

Blob Container

Storage blob Container name

Storage Account Name

Azure storage account name

Subscription

Set Eventhub name

  • No labels