ServerDevOpsAuditingSettings Class

Definition

A server DevOps auditing settings.

[Microsoft.Rest.Serialization.JsonTransformation]
public class ServerDevOpsAuditingSettings : Microsoft.Azure.Management.Sql.Models.ProxyResource
[<Microsoft.Rest.Serialization.JsonTransformation>]
type ServerDevOpsAuditingSettings = class
    inherit ProxyResource
Public Class ServerDevOpsAuditingSettings
Inherits ProxyResource
Inheritance
System.Object
ServerDevOpsAuditingSettings
Attributes

Constructors

ServerDevOpsAuditingSettings()

Initializes a new instance of the ServerDevOpsAuditingSettings class.

ServerDevOpsAuditingSettings(BlobAuditingPolicyState, String, String, String, SystemData, Nullable<Boolean>, String, String, Nullable<Guid>)

Initializes a new instance of the ServerDevOpsAuditingSettings class.

Properties

Id

Gets resource ID.

(Inherited from Resource)
IsAzureMonitorTargetEnabled

Gets or sets specifies whether DevOps audit events are sent to Azure Monitor. In order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.

When using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.

Diagnostic Settings URI format: PUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview

For more information, see Diagnostic Settings REST API or Diagnostic Settings PowerShell

Name

Gets resource name.

(Inherited from Resource)
State

Gets or sets specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required. Possible values include: 'Enabled', 'Disabled'

StorageAccountAccessKey

Gets or sets specifies the identifier key of the auditing storage account. If state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage. Prerequisites for using managed identity authentication:

  1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).
  2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity. For more information, see Auditing to storage using Managed Identity authentication
StorageAccountSubscriptionId

Gets or sets specifies the blob storage subscription Id.

StorageEndpoint

Gets or sets specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.

SystemData

Gets systemData of ServerDevOpsAuditSettingsResource.

Type

Gets resource type.

(Inherited from Resource)

Methods

Validate()

Validate the object.

Applies to