github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/azure/database/AVD-AZU-0018/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/azure/database/AVD-AZU-0018/Terraform.md (about)

     1  
     2  Provide at least one email address for threat alerts
     3  
     4  ```hcl
     5   resource "azurerm_mssql_server_security_alert_policy" "good_example" {
     6     resource_group_name        = azurerm_resource_group.example.name
     7     server_name                = azurerm_sql_server.example.name
     8     state                      = "Enabled"
     9     storage_endpoint           = azurerm_storage_account.example.primary_blob_endpoint
    10     storage_account_access_key = azurerm_storage_account.example.primary_access_key
    11     disabled_alerts = [
    12       "Sql_Injection",
    13       "Data_Exfiltration"
    14     ]
    15     email_addresses = ["db-security@acme.org"]
    16   }
    17   
    18  ```
    19  
    20  #### Remediation Links
    21   - https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/mssql_server_security_alert_policy#email_addresses
    22