Unrestricted access to SQL Server

ID

azure_sql_server_unrestricted_access

Severity

high

Vendor

Azure

Resource

Network

Tags

reachable

Description

Unrestricted access to SQL Server. This is insecure configuration because unexpected accesses from other Azure resources or internet can happen.

Learn more about this topic at Azure SQL Server firewall.

Examples

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Create (or update) Firewall Rule
      azure_rm_sqlfirewallrule:
        resource_group: myResourceGroup
        server_name: firewallrulecrudtest-6285
        name: firewallrulecrudtest-5370
        start_ip_address: 0.0.0.0
        end_ip_address: 172.28.10.138

Mitigation / Fix

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Create (or update) Firewall Rule
      azure_rm_sqlfirewallrule:
        resource_group: myResourceGroup
        server_name: firewallrulecrudtest-6285
        name: firewallrulecrudtest-5370
        start_ip_address: 172.28.10.136
        end_ip_address: 172.28.10.138