Ensure That Microsoft Defender for (Managed Instance) Azure SQL Databases Is Set To 'On'
Why This Matters
Unprotected Azure SQL Managed Instances are vulnerable to data breaches, unauthorized access, and malicious activity that can go undetected. By enabling Microsoft Defender for Azure SQL Databases, you gain continuous threat monitoring, vulnerability assessments, and anomaly detection that alert your security team to potential threats in real time. Without this protection, your organization risks exposing sensitive data to attackers who exploit overlooked vulnerabilities or abnormal query patterns.
What Aether365 Checks
Aether365 verifies that the Microsoft Defender for Cloud plan for Azure SQL Databases is enabled at the subscription level, specifically covering Managed Instance deployments. This check appears in your Aether365 dashboard under the azure-defender-for-cloud category and flags any subscription where the setting is turned Off.
How to Fix
To enable Defender for Azure SQL Databases across your subscription, use these steps: