Docs
Packages
Azure Native v1.102.0, May 2 23
Azure Native v1.102.0, May 2 23
azure-native.sql.ManagedDatabaseVulnerabilityAssessment
Explore with Pulumi AI
A database vulnerability assessment. API Version: 2020-11-01-preview.
Example Usage
Create a database's vulnerability assessment with all parameters
using System.Collections.Generic;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedDatabaseVulnerabilityAssessment = new AzureNative.Sql.ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment", new()
{
DatabaseName = "testdb",
ManagedInstanceName = "vulnerabilityaseessmenttest-6440",
RecurringScans = new AzureNative.Sql.Inputs.VulnerabilityAssessmentRecurringScansPropertiesArgs
{
EmailSubscriptionAdmins = true,
Emails = new[]
{
"email1@mail.com",
"email2@mail.com",
},
IsEnabled = true,
},
ResourceGroupName = "vulnerabilityaseessmenttest-4799",
StorageContainerPath = "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
StorageContainerSasKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
VulnerabilityAssessmentName = "default",
});
});
package main
import (
sql "github.com/pulumi/pulumi-azure-native/sdk/go/azure/sql"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := sql.NewManagedDatabaseVulnerabilityAssessment(ctx, "managedDatabaseVulnerabilityAssessment", &sql.ManagedDatabaseVulnerabilityAssessmentArgs{
DatabaseName: pulumi.String("testdb"),
ManagedInstanceName: pulumi.String("vulnerabilityaseessmenttest-6440"),
RecurringScans: &sql.VulnerabilityAssessmentRecurringScansPropertiesArgs{
EmailSubscriptionAdmins: pulumi.Bool(true),
Emails: pulumi.StringArray{
pulumi.String("email1@mail.com"),
pulumi.String("email2@mail.com"),
},
IsEnabled: pulumi.Bool(true),
},
ResourceGroupName: pulumi.String("vulnerabilityaseessmenttest-4799"),
StorageContainerPath: pulumi.String("https://myStorage.blob.core.windows.net/vulnerability-assessment/"),
StorageContainerSasKey: pulumi.String("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"),
VulnerabilityAssessmentName: pulumi.String("default"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.sql.ManagedDatabaseVulnerabilityAssessment;
import com.pulumi.azurenative.sql.ManagedDatabaseVulnerabilityAssessmentArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedDatabaseVulnerabilityAssessment = new ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment", ManagedDatabaseVulnerabilityAssessmentArgs.builder()
.databaseName("testdb")
.managedInstanceName("vulnerabilityaseessmenttest-6440")
.recurringScans(Map.ofEntries(
Map.entry("emailSubscriptionAdmins", true),
Map.entry("emails",
"email1@mail.com",
"email2@mail.com"),
Map.entry("isEnabled", true)
))
.resourceGroupName("vulnerabilityaseessmenttest-4799")
.storageContainerPath("https://myStorage.blob.core.windows.net/vulnerability-assessment/")
.storageContainerSasKey("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX")
.vulnerabilityAssessmentName("default")
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
managed_database_vulnerability_assessment = azure_native.sql.ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment",
database_name="testdb",
managed_instance_name="vulnerabilityaseessmenttest-6440",
recurring_scans=azure_native.sql.VulnerabilityAssessmentRecurringScansPropertiesArgs(
email_subscription_admins=True,
emails=[
"email1@mail.com",
"email2@mail.com",
],
is_enabled=True,
),
resource_group_name="vulnerabilityaseessmenttest-4799",
storage_container_path="https://myStorage.blob.core.windows.net/vulnerability-assessment/",
storage_container_sas_key="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
vulnerability_assessment_name="default")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedDatabaseVulnerabilityAssessment = new azure_native.sql.ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment", {
databaseName: "testdb",
managedInstanceName: "vulnerabilityaseessmenttest-6440",
recurringScans: {
emailSubscriptionAdmins: true,
emails: [
"email1@mail.com",
"email2@mail.com",
],
isEnabled: true,
},
resourceGroupName: "vulnerabilityaseessmenttest-4799",
storageContainerPath: "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
storageContainerSasKey: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
vulnerabilityAssessmentName: "default",
});
resources:
managedDatabaseVulnerabilityAssessment:
type: azure-native:sql:ManagedDatabaseVulnerabilityAssessment
properties:
databaseName: testdb
managedInstanceName: vulnerabilityaseessmenttest-6440
recurringScans:
emailSubscriptionAdmins: true
emails:
- email1@mail.com
- email2@mail.com
isEnabled: true
resourceGroupName: vulnerabilityaseessmenttest-4799
storageContainerPath: https://myStorage.blob.core.windows.net/vulnerability-assessment/
storageContainerSasKey: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
vulnerabilityAssessmentName: default
Create a database's vulnerability assessment with minimal parameters
using System.Collections.Generic;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedDatabaseVulnerabilityAssessment = new AzureNative.Sql.ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment", new()
{
DatabaseName = "testdb",
ManagedInstanceName = "vulnerabilityaseessmenttest-6440",
ResourceGroupName = "vulnerabilityaseessmenttest-4799",
StorageContainerPath = "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
StorageContainerSasKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
VulnerabilityAssessmentName = "default",
});
});
package main
import (
sql "github.com/pulumi/pulumi-azure-native/sdk/go/azure/sql"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := sql.NewManagedDatabaseVulnerabilityAssessment(ctx, "managedDatabaseVulnerabilityAssessment", &sql.ManagedDatabaseVulnerabilityAssessmentArgs{
DatabaseName: pulumi.String("testdb"),
ManagedInstanceName: pulumi.String("vulnerabilityaseessmenttest-6440"),
ResourceGroupName: pulumi.String("vulnerabilityaseessmenttest-4799"),
StorageContainerPath: pulumi.String("https://myStorage.blob.core.windows.net/vulnerability-assessment/"),
StorageContainerSasKey: pulumi.String("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"),
VulnerabilityAssessmentName: pulumi.String("default"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.sql.ManagedDatabaseVulnerabilityAssessment;
import com.pulumi.azurenative.sql.ManagedDatabaseVulnerabilityAssessmentArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedDatabaseVulnerabilityAssessment = new ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment", ManagedDatabaseVulnerabilityAssessmentArgs.builder()
.databaseName("testdb")
.managedInstanceName("vulnerabilityaseessmenttest-6440")
.resourceGroupName("vulnerabilityaseessmenttest-4799")
.storageContainerPath("https://myStorage.blob.core.windows.net/vulnerability-assessment/")
.storageContainerSasKey("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX")
.vulnerabilityAssessmentName("default")
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
managed_database_vulnerability_assessment = azure_native.sql.ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment",
database_name="testdb",
managed_instance_name="vulnerabilityaseessmenttest-6440",
resource_group_name="vulnerabilityaseessmenttest-4799",
storage_container_path="https://myStorage.blob.core.windows.net/vulnerability-assessment/",
storage_container_sas_key="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
vulnerability_assessment_name="default")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedDatabaseVulnerabilityAssessment = new azure_native.sql.ManagedDatabaseVulnerabilityAssessment("managedDatabaseVulnerabilityAssessment", {
databaseName: "testdb",
managedInstanceName: "vulnerabilityaseessmenttest-6440",
resourceGroupName: "vulnerabilityaseessmenttest-4799",
storageContainerPath: "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
storageContainerSasKey: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
vulnerabilityAssessmentName: "default",
});
resources:
managedDatabaseVulnerabilityAssessment:
type: azure-native:sql:ManagedDatabaseVulnerabilityAssessment
properties:
databaseName: testdb
managedInstanceName: vulnerabilityaseessmenttest-6440
resourceGroupName: vulnerabilityaseessmenttest-4799
storageContainerPath: https://myStorage.blob.core.windows.net/vulnerability-assessment/
storageContainerSasKey: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
vulnerabilityAssessmentName: default
Create ManagedDatabaseVulnerabilityAssessment Resource
new ManagedDatabaseVulnerabilityAssessment(name: string, args: ManagedDatabaseVulnerabilityAssessmentArgs, opts?: CustomResourceOptions);@overload
def ManagedDatabaseVulnerabilityAssessment(resource_name: str,
opts: Optional[ResourceOptions] = None,
database_name: Optional[str] = None,
managed_instance_name: Optional[str] = None,
recurring_scans: Optional[VulnerabilityAssessmentRecurringScansPropertiesArgs] = None,
resource_group_name: Optional[str] = None,
storage_account_access_key: Optional[str] = None,
storage_container_path: Optional[str] = None,
storage_container_sas_key: Optional[str] = None,
vulnerability_assessment_name: Optional[str] = None)
@overload
def ManagedDatabaseVulnerabilityAssessment(resource_name: str,
args: ManagedDatabaseVulnerabilityAssessmentArgs,
opts: Optional[ResourceOptions] = None)func NewManagedDatabaseVulnerabilityAssessment(ctx *Context, name string, args ManagedDatabaseVulnerabilityAssessmentArgs, opts ...ResourceOption) (*ManagedDatabaseVulnerabilityAssessment, error)public ManagedDatabaseVulnerabilityAssessment(string name, ManagedDatabaseVulnerabilityAssessmentArgs args, CustomResourceOptions? opts = null)
public ManagedDatabaseVulnerabilityAssessment(String name, ManagedDatabaseVulnerabilityAssessmentArgs args)
public ManagedDatabaseVulnerabilityAssessment(String name, ManagedDatabaseVulnerabilityAssessmentArgs args, CustomResourceOptions options)
type: azure-native:sql:ManagedDatabaseVulnerabilityAssessment
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagedDatabaseVulnerabilityAssessmentArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ManagedDatabaseVulnerabilityAssessmentArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ManagedDatabaseVulnerabilityAssessmentArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagedDatabaseVulnerabilityAssessmentArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ManagedDatabaseVulnerabilityAssessmentArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
ManagedDatabaseVulnerabilityAssessment Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The ManagedDatabaseVulnerabilityAssessment resource accepts the following input properties:
- Database
Name string The name of the database for which the vulnerability assessment is defined.
- Managed
Instance stringName The name of the managed instance.
- Resource
Group stringName The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
- Recurring
Scans Pulumi.Azure Native. Sql. Inputs. Vulnerability Assessment Recurring Scans Properties Args The recurring scans settings
- Storage
Account stringAccess Key Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.
- Storage
Container stringPath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
- Storage
Container stringSas Key A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.
- Vulnerability
Assessment stringName The name of the vulnerability assessment.
- Database
Name string The name of the database for which the vulnerability assessment is defined.
- Managed
Instance stringName The name of the managed instance.
- Resource
Group stringName The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
- Recurring
Scans VulnerabilityAssessment Recurring Scans Properties Args The recurring scans settings
- Storage
Account stringAccess Key Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.
- Storage
Container stringPath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
- Storage
Container stringSas Key A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.
- Vulnerability
Assessment stringName The name of the vulnerability assessment.
- database
Name String The name of the database for which the vulnerability assessment is defined.
- managed
Instance StringName The name of the managed instance.
- resource
Group StringName The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
- recurring
Scans VulnerabilityAssessment Recurring Scans Properties Args The recurring scans settings
- storage
Account StringAccess Key Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.
- storage
Container StringPath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
- storage
Container StringSas Key A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.
- vulnerability
Assessment StringName The name of the vulnerability assessment.
- database
Name string The name of the database for which the vulnerability assessment is defined.
- managed
Instance stringName The name of the managed instance.
- resource
Group stringName The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
- recurring
Scans VulnerabilityAssessment Recurring Scans Properties Args The recurring scans settings
- storage
Account stringAccess Key Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.
- storage
Container stringPath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
- storage
Container stringSas Key A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.
- vulnerability
Assessment stringName The name of the vulnerability assessment.
- database_
name str The name of the database for which the vulnerability assessment is defined.
- managed_
instance_ strname The name of the managed instance.
- resource_
group_ strname The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
- recurring_
scans VulnerabilityAssessment Recurring Scans Properties Args The recurring scans settings
- storage_
account_ straccess_ key Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.
- storage_
container_ strpath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
- storage_
container_ strsas_ key A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.
- vulnerability_
assessment_ strname The name of the vulnerability assessment.
- database
Name String The name of the database for which the vulnerability assessment is defined.
- managed
Instance StringName The name of the managed instance.
- resource
Group StringName The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
- recurring
Scans Property Map The recurring scans settings
- storage
Account StringAccess Key Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.
- storage
Container StringPath A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
- storage
Container StringSas Key A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.
- vulnerability
Assessment StringName The name of the vulnerability assessment.
Outputs
All input properties are implicitly available as output properties. Additionally, the ManagedDatabaseVulnerabilityAssessment resource produces the following output properties:
Supporting Types
VulnerabilityAssessmentRecurringScansProperties
- Email
Subscription boolAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- Emails List<string>
Specifies an array of e-mail addresses to which the scan notification is sent.
- Is
Enabled bool Recurring scans state.
- Email
Subscription boolAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- Emails []string
Specifies an array of e-mail addresses to which the scan notification is sent.
- Is
Enabled bool Recurring scans state.
- email
Subscription BooleanAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
- is
Enabled Boolean Recurring scans state.
- email
Subscription booleanAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails string[]
Specifies an array of e-mail addresses to which the scan notification is sent.
- is
Enabled boolean Recurring scans state.
- email_
subscription_ booladmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails Sequence[str]
Specifies an array of e-mail addresses to which the scan notification is sent.
- is_
enabled bool Recurring scans state.
- email
Subscription BooleanAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
- is
Enabled Boolean Recurring scans state.
VulnerabilityAssessmentRecurringScansPropertiesResponse
- Email
Subscription boolAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- Emails List<string>
Specifies an array of e-mail addresses to which the scan notification is sent.
- Is
Enabled bool Recurring scans state.
- Email
Subscription boolAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- Emails []string
Specifies an array of e-mail addresses to which the scan notification is sent.
- Is
Enabled bool Recurring scans state.
- email
Subscription BooleanAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
- is
Enabled Boolean Recurring scans state.
- email
Subscription booleanAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails string[]
Specifies an array of e-mail addresses to which the scan notification is sent.
- is
Enabled boolean Recurring scans state.
- email_
subscription_ booladmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails Sequence[str]
Specifies an array of e-mail addresses to which the scan notification is sent.
- is_
enabled bool Recurring scans state.
- email
Subscription BooleanAdmins Specifies that the schedule scan notification will be is sent to the subscription administrators.
- emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
- is
Enabled Boolean Recurring scans state.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:sql:ManagedDatabaseVulnerabilityAssessment default /subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/vulnerabilityaseessmenttest-4799/providers/Microsoft.Sql/managedInstances/vulnerabilityaseessmenttest-6440/databases/testdb/vulnerabilityAssessments/default
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0