Ensure Public Network Access is Disabled
Why This Matters
Leaving public network access enabled on your Azure SQL servers exposes your databases to the entire internet, creating a broad attack surface. Attackers can scan for publicly accessible SQL endpoints and attempt brute force or credential theft. Disabling public access forces all connections through private network paths, which significantly reduces the risk of unauthorized access and aligns with secure network segmentation best practices.
What Aether365 Checks
This check verifies that Azure SQL servers have public network access set to Disable. It appears in the Aether365 dashboard under the azure-sql-server service grouping.