在 Azure SQL 托管实例中配置高级威胁防护Configure Advanced Threat Protection in Azure SQL Managed Instance

适用于: Azure SQL 托管实例

Azure SQL 托管实例高级威胁防护可检测异常活动,这些活动指示存在访问或恶意利用数据库的异常且可能有害的企图。Advanced Threat Protection for an Azure SQL Managed Instance detects anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases. 高级威胁防护可以识别 潜在的 SQL 注入来自异常位置或数据中心的访问来自陌生主体或可能有害的应用程序的访问 以及 暴力破解 SQL 凭据 - 请在 高级威胁防护警报中查看更多详细信息。Advanced Threat Protection can identify Potential SQL injection, Access from unusual location or data center, Access from unfamiliar principal or potentially harmful application, and Brute force SQL credentials - see more details in Advanced Threat Protection alerts.

你可以通过电子邮件通知Azure 门户接收有关检测到的威胁的通知You can receive notifications about the detected threats via email notifications or Azure portal

高级威胁防护包含在 Azure Defender for SQL 产品/服务中,这是用于高级 SQL 安全功能的统一软件包。Advanced Threat Protection is part of the Azure Defender for SQL offering, which is a unified package for advanced SQL security capabilities. 可通过中心 Azure Defender for SQL 门户访问和管理高级威胁防护。Advanced Threat Protection can be accessed and managed via the central Azure Defender for SQL portal.

Azure 门户Azure portal

  1. 登录 Azure 门户Sign into the Azure portal.

  2. 导航到要保护的 SQL 托管实例的实例配置页面。Navigate to the configuration page of the instance of SQL Managed Instance you want to protect. 在“安全性”下,选择“安全中心” 。Under Security, select Security Center.

  3. 在 Azure Defender for SQL 配置页中In the Azure Defender for SQL configuration page

    • 启用 Azure Defender for SQL。Turn ON Azure Defender for SQL.
    • 配置“警报发送对象”电子邮件地址,用于在检测到异常数据库活动时接收安全警报。Configure the Send alerts to email address to receive security alerts upon detection of anomalous database activities.
    • 选择保存异常的威胁审核记录的 Azure 存储帐户Select the Azure storage account where anomalous threat audit records are saved.
    • 选择要配置的 高级威胁防护类型Select the Advanced Threat Protection types that you would like configured. 详细了解高级威胁防护警报Learn more about Advanced Threat Protection alerts.
  4. 单击“保存”,保存新的或更新后的适用于 Azure Defender for SQL 策略。Click Save to save the new or updated Azure Defender for SQL policy.

    设置高级威胁防护

后续步骤Next steps