Docs Home
We recommend using Azure Native.
Azure v6.22.0 published on Tuesday, Apr 1, 2025 by Pulumi
azure.synapse.WorkspaceExtendedAuditingPolicy
Explore with Pulumi AI
Manages a Synapse Workspace Extended Auditing Policy.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const exampleAccount = new azure.storage.Account("example", {
name: "examplestorageacc",
resourceGroupName: example.name,
location: example.location,
accountTier: "Standard",
accountReplicationType: "LRS",
accountKind: "BlobStorage",
});
const exampleDataLakeGen2Filesystem = new azure.storage.DataLakeGen2Filesystem("example", {
name: "example",
storageAccountId: exampleAccount.id,
});
const exampleWorkspace = new azure.synapse.Workspace("example", {
name: "example",
resourceGroupName: example.name,
location: example.location,
storageDataLakeGen2FilesystemId: exampleDataLakeGen2Filesystem.id,
sqlAdministratorLogin: "sqladminuser",
sqlAdministratorLoginPassword: "H@Sh1CoR3!",
identity: {
type: "SystemAssigned",
},
});
const auditLogs = new azure.storage.Account("audit_logs", {
name: "examplesa",
resourceGroupName: example.name,
location: example.location,
accountTier: "Standard",
accountReplicationType: "LRS",
});
const exampleWorkspaceExtendedAuditingPolicy = new azure.synapse.WorkspaceExtendedAuditingPolicy("example", {
synapseWorkspaceId: exampleWorkspace.id,
storageEndpoint: auditLogs.primaryBlobEndpoint,
storageAccountAccessKey: auditLogs.primaryAccessKey,
storageAccountAccessKeyIsSecondary: false,
retentionInDays: 6,
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_account = azure.storage.Account("example",
name="examplestorageacc",
resource_group_name=example.name,
location=example.location,
account_tier="Standard",
account_replication_type="LRS",
account_kind="BlobStorage")
example_data_lake_gen2_filesystem = azure.storage.DataLakeGen2Filesystem("example",
name="example",
storage_account_id=example_account.id)
example_workspace = azure.synapse.Workspace("example",
name="example",
resource_group_name=example.name,
location=example.location,
storage_data_lake_gen2_filesystem_id=example_data_lake_gen2_filesystem.id,
sql_administrator_login="sqladminuser",
sql_administrator_login_password="H@Sh1CoR3!",
identity={
"type": "SystemAssigned",
})
audit_logs = azure.storage.Account("audit_logs",
name="examplesa",
resource_group_name=example.name,
location=example.location,
account_tier="Standard",
account_replication_type="LRS")
example_workspace_extended_auditing_policy = azure.synapse.WorkspaceExtendedAuditingPolicy("example",
synapse_workspace_id=example_workspace.id,
storage_endpoint=audit_logs.primary_blob_endpoint,
storage_account_access_key=audit_logs.primary_access_key,
storage_account_access_key_is_secondary=False,
retention_in_days=6)
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/synapse"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
Name: pulumi.String("examplestorageacc"),
ResourceGroupName: example.Name,
Location: example.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("LRS"),
AccountKind: pulumi.String("BlobStorage"),
})
if err != nil {
return err
}
exampleDataLakeGen2Filesystem, err := storage.NewDataLakeGen2Filesystem(ctx, "example", &storage.DataLakeGen2FilesystemArgs{
Name: pulumi.String("example"),
StorageAccountId: exampleAccount.ID(),
})
if err != nil {
return err
}
exampleWorkspace, err := synapse.NewWorkspace(ctx, "example", &synapse.WorkspaceArgs{
Name: pulumi.String("example"),
ResourceGroupName: example.Name,
Location: example.Location,
StorageDataLakeGen2FilesystemId: exampleDataLakeGen2Filesystem.ID(),
SqlAdministratorLogin: pulumi.String("sqladminuser"),
SqlAdministratorLoginPassword: pulumi.String("H@Sh1CoR3!"),
Identity: &synapse.WorkspaceIdentityArgs{
Type: pulumi.String("SystemAssigned"),
},
})
if err != nil {
return err
}
auditLogs, err := storage.NewAccount(ctx, "audit_logs", &storage.AccountArgs{
Name: pulumi.String("examplesa"),
ResourceGroupName: example.Name,
Location: example.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("LRS"),
})
if err != nil {
return err
}
_, err = synapse.NewWorkspaceExtendedAuditingPolicy(ctx, "example", &synapse.WorkspaceExtendedAuditingPolicyArgs{
SynapseWorkspaceId: exampleWorkspace.ID(),
StorageEndpoint: auditLogs.PrimaryBlobEndpoint,
StorageAccountAccessKey: auditLogs.PrimaryAccessKey,
StorageAccountAccessKeyIsSecondary: pulumi.Bool(false),
RetentionInDays: pulumi.Int(6),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var exampleAccount = new Azure.Storage.Account("example", new()
{
Name = "examplestorageacc",
ResourceGroupName = example.Name,
Location = example.Location,
AccountTier = "Standard",
AccountReplicationType = "LRS",
AccountKind = "BlobStorage",
});
var exampleDataLakeGen2Filesystem = new Azure.Storage.DataLakeGen2Filesystem("example", new()
{
Name = "example",
StorageAccountId = exampleAccount.Id,
});
var exampleWorkspace = new Azure.Synapse.Workspace("example", new()
{
Name = "example",
ResourceGroupName = example.Name,
Location = example.Location,
StorageDataLakeGen2FilesystemId = exampleDataLakeGen2Filesystem.Id,
SqlAdministratorLogin = "sqladminuser",
SqlAdministratorLoginPassword = "H@Sh1CoR3!",
Identity = new Azure.Synapse.Inputs.WorkspaceIdentityArgs
{
Type = "SystemAssigned",
},
});
var auditLogs = new Azure.Storage.Account("audit_logs", new()
{
Name = "examplesa",
ResourceGroupName = example.Name,
Location = example.Location,
AccountTier = "Standard",
AccountReplicationType = "LRS",
});
var exampleWorkspaceExtendedAuditingPolicy = new Azure.Synapse.WorkspaceExtendedAuditingPolicy("example", new()
{
SynapseWorkspaceId = exampleWorkspace.Id,
StorageEndpoint = auditLogs.PrimaryBlobEndpoint,
StorageAccountAccessKey = auditLogs.PrimaryAccessKey,
StorageAccountAccessKeyIsSecondary = false,
RetentionInDays = 6,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import com.pulumi.azure.storage.DataLakeGen2Filesystem;
import com.pulumi.azure.storage.DataLakeGen2FilesystemArgs;
import com.pulumi.azure.synapse.Workspace;
import com.pulumi.azure.synapse.WorkspaceArgs;
import com.pulumi.azure.synapse.inputs.WorkspaceIdentityArgs;
import com.pulumi.azure.synapse.WorkspaceExtendedAuditingPolicy;
import com.pulumi.azure.synapse.WorkspaceExtendedAuditingPolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.name("examplestorageacc")
.resourceGroupName(example.name())
.location(example.location())
.accountTier("Standard")
.accountReplicationType("LRS")
.accountKind("BlobStorage")
.build());
var exampleDataLakeGen2Filesystem = new DataLakeGen2Filesystem("exampleDataLakeGen2Filesystem", DataLakeGen2FilesystemArgs.builder()
.name("example")
.storageAccountId(exampleAccount.id())
.build());
var exampleWorkspace = new Workspace("exampleWorkspace", WorkspaceArgs.builder()
.name("example")
.resourceGroupName(example.name())
.location(example.location())
.storageDataLakeGen2FilesystemId(exampleDataLakeGen2Filesystem.id())
.sqlAdministratorLogin("sqladminuser")
.sqlAdministratorLoginPassword("H@Sh1CoR3!")
.identity(WorkspaceIdentityArgs.builder()
.type("SystemAssigned")
.build())
.build());
var auditLogs = new Account("auditLogs", AccountArgs.builder()
.name("examplesa")
.resourceGroupName(example.name())
.location(example.location())
.accountTier("Standard")
.accountReplicationType("LRS")
.build());
var exampleWorkspaceExtendedAuditingPolicy = new WorkspaceExtendedAuditingPolicy("exampleWorkspaceExtendedAuditingPolicy", WorkspaceExtendedAuditingPolicyArgs.builder()
.synapseWorkspaceId(exampleWorkspace.id())
.storageEndpoint(auditLogs.primaryBlobEndpoint())
.storageAccountAccessKey(auditLogs.primaryAccessKey())
.storageAccountAccessKeyIsSecondary(false)
.retentionInDays(6)
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
exampleAccount:
type: azure:storage:Account
name: example
properties:
name: examplestorageacc
resourceGroupName: ${example.name}
location: ${example.location}
accountTier: Standard
accountReplicationType: LRS
accountKind: BlobStorage
exampleDataLakeGen2Filesystem:
type: azure:storage:DataLakeGen2Filesystem
name: example
properties:
name: example
storageAccountId: ${exampleAccount.id}
exampleWorkspace:
type: azure:synapse:Workspace
name: example
properties:
name: example
resourceGroupName: ${example.name}
location: ${example.location}
storageDataLakeGen2FilesystemId: ${exampleDataLakeGen2Filesystem.id}
sqlAdministratorLogin: sqladminuser
sqlAdministratorLoginPassword: H@Sh1CoR3!
identity:
type: SystemAssigned
auditLogs:
type: azure:storage:Account
name: audit_logs
properties:
name: examplesa
resourceGroupName: ${example.name}
location: ${example.location}
accountTier: Standard
accountReplicationType: LRS
exampleWorkspaceExtendedAuditingPolicy:
type: azure:synapse:WorkspaceExtendedAuditingPolicy
name: example
properties:
synapseWorkspaceId: ${exampleWorkspace.id}
storageEndpoint: ${auditLogs.primaryBlobEndpoint}
storageAccountAccessKey: ${auditLogs.primaryAccessKey}
storageAccountAccessKeyIsSecondary: false
retentionInDays: 6
Create WorkspaceExtendedAuditingPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new WorkspaceExtendedAuditingPolicy(name: string, args: WorkspaceExtendedAuditingPolicyArgs, opts?: CustomResourceOptions);@overload
def WorkspaceExtendedAuditingPolicy(resource_name: str,
args: WorkspaceExtendedAuditingPolicyArgs,
opts: Optional[ResourceOptions] = None)
@overload
def WorkspaceExtendedAuditingPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
synapse_workspace_id: Optional[str] = None,
log_monitoring_enabled: Optional[bool] = None,
retention_in_days: Optional[int] = None,
storage_account_access_key: Optional[str] = None,
storage_account_access_key_is_secondary: Optional[bool] = None,
storage_endpoint: Optional[str] = None)func NewWorkspaceExtendedAuditingPolicy(ctx *Context, name string, args WorkspaceExtendedAuditingPolicyArgs, opts ...ResourceOption) (*WorkspaceExtendedAuditingPolicy, error)public WorkspaceExtendedAuditingPolicy(string name, WorkspaceExtendedAuditingPolicyArgs args, CustomResourceOptions? opts = null)
public WorkspaceExtendedAuditingPolicy(String name, WorkspaceExtendedAuditingPolicyArgs args)
public WorkspaceExtendedAuditingPolicy(String name, WorkspaceExtendedAuditingPolicyArgs args, CustomResourceOptions options)
type: azure:synapse:WorkspaceExtendedAuditingPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args WorkspaceExtendedAuditingPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args WorkspaceExtendedAuditingPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args WorkspaceExtendedAuditingPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args WorkspaceExtendedAuditingPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args WorkspaceExtendedAuditingPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var workspaceExtendedAuditingPolicyResource = new Azure.Synapse.WorkspaceExtendedAuditingPolicy("workspaceExtendedAuditingPolicyResource", new()
{
SynapseWorkspaceId = "string",
LogMonitoringEnabled = false,
RetentionInDays = 0,
StorageAccountAccessKey = "string",
StorageAccountAccessKeyIsSecondary = false,
StorageEndpoint = "string",
});
example, err := synapse.NewWorkspaceExtendedAuditingPolicy(ctx, "workspaceExtendedAuditingPolicyResource", &synapse.WorkspaceExtendedAuditingPolicyArgs{
SynapseWorkspaceId: pulumi.String("string"),
LogMonitoringEnabled: pulumi.Bool(false),
RetentionInDays: pulumi.Int(0),
StorageAccountAccessKey: pulumi.String("string"),
StorageAccountAccessKeyIsSecondary: pulumi.Bool(false),
StorageEndpoint: pulumi.String("string"),
})
var workspaceExtendedAuditingPolicyResource = new WorkspaceExtendedAuditingPolicy("workspaceExtendedAuditingPolicyResource", WorkspaceExtendedAuditingPolicyArgs.builder()
.synapseWorkspaceId("string")
.logMonitoringEnabled(false)
.retentionInDays(0)
.storageAccountAccessKey("string")
.storageAccountAccessKeyIsSecondary(false)
.storageEndpoint("string")
.build());
workspace_extended_auditing_policy_resource = azure.synapse.WorkspaceExtendedAuditingPolicy("workspaceExtendedAuditingPolicyResource",
synapse_workspace_id="string",
log_monitoring_enabled=False,
retention_in_days=0,
storage_account_access_key="string",
storage_account_access_key_is_secondary=False,
storage_endpoint="string")
const workspaceExtendedAuditingPolicyResource = new azure.synapse.WorkspaceExtendedAuditingPolicy("workspaceExtendedAuditingPolicyResource", {
synapseWorkspaceId: "string",
logMonitoringEnabled: false,
retentionInDays: 0,
storageAccountAccessKey: "string",
storageAccountAccessKeyIsSecondary: false,
storageEndpoint: "string",
});
type: azure:synapse:WorkspaceExtendedAuditingPolicy
properties:
logMonitoringEnabled: false
retentionInDays: 0
storageAccountAccessKey: string
storageAccountAccessKeyIsSecondary: false
storageEndpoint: string
synapseWorkspaceId: string
WorkspaceExtendedAuditingPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The WorkspaceExtendedAuditingPolicy resource accepts the following input properties:
- Synapse
Workspace stringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- Log
Monitoring boolEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - Retention
In intDays - The number of days to retain logs for in the storage account. Defaults to
0. - Storage
Account stringAccess Key - The access key to use for the auditing storage account.
- Storage
Account boolAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - Storage
Endpoint string - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- Synapse
Workspace stringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- Log
Monitoring boolEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - Retention
In intDays - The number of days to retain logs for in the storage account. Defaults to
0. - Storage
Account stringAccess Key - The access key to use for the auditing storage account.
- Storage
Account boolAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - Storage
Endpoint string - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse
Workspace StringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log
Monitoring BooleanEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention
In IntegerDays - The number of days to retain logs for in the storage account. Defaults to
0. - storage
Account StringAccess Key - The access key to use for the auditing storage account.
- storage
Account BooleanAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage
Endpoint String - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse
Workspace stringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log
Monitoring booleanEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention
In numberDays - The number of days to retain logs for in the storage account. Defaults to
0. - storage
Account stringAccess Key - The access key to use for the auditing storage account.
- storage
Account booleanAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage
Endpoint string - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse_
workspace_ strid - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log_
monitoring_ boolenabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention_
in_ intdays - The number of days to retain logs for in the storage account. Defaults to
0. - storage_
account_ straccess_ key - The access key to use for the auditing storage account.
- storage_
account_ boolaccess_ key_ is_ secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage_
endpoint str - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse
Workspace StringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log
Monitoring BooleanEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention
In NumberDays - The number of days to retain logs for in the storage account. Defaults to
0. - storage
Account StringAccess Key - The access key to use for the auditing storage account.
- storage
Account BooleanAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage
Endpoint String - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
Outputs
All input properties are implicitly available as output properties. Additionally, the WorkspaceExtendedAuditingPolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing WorkspaceExtendedAuditingPolicy Resource
Get an existing WorkspaceExtendedAuditingPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: WorkspaceExtendedAuditingPolicyState, opts?: CustomResourceOptions): WorkspaceExtendedAuditingPolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
log_monitoring_enabled: Optional[bool] = None,
retention_in_days: Optional[int] = None,
storage_account_access_key: Optional[str] = None,
storage_account_access_key_is_secondary: Optional[bool] = None,
storage_endpoint: Optional[str] = None,
synapse_workspace_id: Optional[str] = None) -> WorkspaceExtendedAuditingPolicyfunc GetWorkspaceExtendedAuditingPolicy(ctx *Context, name string, id IDInput, state *WorkspaceExtendedAuditingPolicyState, opts ...ResourceOption) (*WorkspaceExtendedAuditingPolicy, error)public static WorkspaceExtendedAuditingPolicy Get(string name, Input<string> id, WorkspaceExtendedAuditingPolicyState? state, CustomResourceOptions? opts = null)public static WorkspaceExtendedAuditingPolicy get(String name, Output<String> id, WorkspaceExtendedAuditingPolicyState state, CustomResourceOptions options)resources: _: type: azure:synapse:WorkspaceExtendedAuditingPolicy get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Log
Monitoring boolEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - Retention
In intDays - The number of days to retain logs for in the storage account. Defaults to
0. - Storage
Account stringAccess Key - The access key to use for the auditing storage account.
- Storage
Account boolAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - Storage
Endpoint string - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- Synapse
Workspace stringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- Log
Monitoring boolEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - Retention
In intDays - The number of days to retain logs for in the storage account. Defaults to
0. - Storage
Account stringAccess Key - The access key to use for the auditing storage account.
- Storage
Account boolAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - Storage
Endpoint string - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- Synapse
Workspace stringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log
Monitoring BooleanEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention
In IntegerDays - The number of days to retain logs for in the storage account. Defaults to
0. - storage
Account StringAccess Key - The access key to use for the auditing storage account.
- storage
Account BooleanAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage
Endpoint String - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse
Workspace StringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log
Monitoring booleanEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention
In numberDays - The number of days to retain logs for in the storage account. Defaults to
0. - storage
Account stringAccess Key - The access key to use for the auditing storage account.
- storage
Account booleanAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage
Endpoint string - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse
Workspace stringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log_
monitoring_ boolenabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention_
in_ intdays - The number of days to retain logs for in the storage account. Defaults to
0. - storage_
account_ straccess_ key - The access key to use for the auditing storage account.
- storage_
account_ boolaccess_ key_ is_ secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage_
endpoint str - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse_
workspace_ strid - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
- log
Monitoring BooleanEnabled - Enable audit events to Azure Monitor? To enable server audit events to Azure Monitor, please enable its master database audit events to Azure Monitor. Defaults to
true. - retention
In NumberDays - The number of days to retain logs for in the storage account. Defaults to
0. - storage
Account StringAccess Key - The access key to use for the auditing storage account.
- storage
Account BooleanAccess Key Is Secondary - Is
storage_account_access_keyvalue the storage's secondary key? - storage
Endpoint String - The blob storage endpoint (e.g. https://example.blob.core.windows.net). This blob storage will hold all extended auditing logs.
- synapse
Workspace StringId - The ID of the Synapse workspace to set the extended auditing policy. Changing this forces a new resource to be created.
Import
Synapse Workspace Extended Auditing Policies can be imported using the resource id, e.g.
$ pulumi import azure:synapse/workspaceExtendedAuditingPolicy:WorkspaceExtendedAuditingPolicy example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.Synapse/workspaces/workspace1/extendedAuditingSettings/default
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Classic pulumi/pulumi-azure
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
azurermTerraform Provider.