你当前正在访问 Microsoft Azure Global Edition 技术文档网站。如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站，请访问 https://docs.azure.cn。

Database Threat Detection Policies - Create Or Update

服务:: SQL Database

API 版本:: 2014-04-01

创建或更新数据库的威胁检测策略。

PUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/securityAlertPolicies/default?api-version=2014-04-01

URI 参数

名称	在	必需	类型	说明
databaseName	path	True	string	为其定义数据库威胁检测策略的数据库的名称。
resourceGroupName	path	True	string	包含资源的资源组的名称。可以从 Azure 资源管理器 API 或门户获取此值。
securityAlertPolicyName	path	True	SecurityAlertPolicyName	安全警报策略的名称。
serverName	path	True	string	服务器的名称。
subscriptionId	path	True	string	标识 Azure 订阅的订阅 ID。
api-version	query	True	string	要用于请求的 API 版本。

请求正文

名称	必需	类型	说明
properties.state	True	SecurityAlertPolicyState	指定策略的状态。如果状态为“已启用”，则需要 storageEndpoint 和 storageAccountAccessKey。
location		string	资源所在的地理位置
properties.disabledAlerts		string	指定已禁用的警报的分号分隔列表，或指定空字符串以禁用无警报。可能的值：Sql_Injection;Sql_Injection_Vulnerability;Access_Anomaly;Data_Exfiltration;Unsafe_Action。
properties.emailAccountAdmins		SecurityAlertPolicyEmailAccountAdmins	指定警报将发送到帐户管理员。
properties.emailAddresses		string	指定警报发送到的电子邮件地址的分号分隔列表。
properties.retentionDays		integer (int32)	指定要保留在威胁检测审核日志中的天数。
properties.storageAccountAccessKey		string	指定威胁检测审核存储帐户的标识符密钥。如果状态为“已启用”，则需要 storageAccountAccessKey。
properties.storageEndpoint		string	指定 blob 存储终结点（例如 `https://MyAccount.blob.core.windows.net`）。此 Blob 存储将保存所有威胁检测审核日志。如果状态为“已启用”，则需要 storageEndpoint。
properties.useServerDefault		SecurityAlertPolicyUseServerDefault	指定是否使用默认服务器策略。

响应

名称	类型	说明
200 OK	DatabaseSecurityAlertPolicy	已成功更新数据库威胁检测策略。
201 Created	DatabaseSecurityAlertPolicy	已成功创建数据库威胁检测策略。
Other Status Codes		错误响应： *** 500 UpsertDatabaseSecurityAlertPolicyFailed - 保存威胁检测设置时出错，请稍后重试 * 500 DatabaseIsUnavailable - 你的设置当前不可用，请稍后重试

名称

类型

说明

200 OK

DatabaseSecurityAlertPolicy

已成功更新数据库威胁检测策略。

201 Created

DatabaseSecurityAlertPolicy

已成功创建数据库威胁检测策略。

Other Status Codes

错误响应： ***

500 UpsertDatabaseSecurityAlertPolicyFailed - 保存威胁检测设置时出错，请稍后重试 * 500 DatabaseIsUnavailable - 你的设置当前不可用，请稍后重试

示例

Create database security alert policy max

Create database security alert policy min

Create database security alert policy max

PUT https://management.azure.com/subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/securityalert-4799/providers/Microsoft.Sql/servers/securityalert-6440/databases/testdb/securityAlertPolicies/default?api-version=2014-04-01

{
  "properties": {
    "state": "Enabled",
    "emailAccountAdmins": "Enabled",
    "emailAddresses": "test@microsoft.com;user@microsoft.com",
    "disabledAlerts": "Sql_Injection;Usage_Anomaly;",
    "retentionDays": 6,
    "storageAccountAccessKey": "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==",
    "storageEndpoint": "https://mystorage.blob.core.windows.net",
    "useServerDefault": "Enabled"
  }
}

import com.azure.core.util.Context;
import com.azure.resourcemanager.sql.fluent.models.DatabaseSecurityAlertPolicyInner;
import com.azure.resourcemanager.sql.models.SecurityAlertPolicyEmailAccountAdmins;
import com.azure.resourcemanager.sql.models.SecurityAlertPolicyName;
import com.azure.resourcemanager.sql.models.SecurityAlertPolicyState;
import com.azure.resourcemanager.sql.models.SecurityAlertPolicyUseServerDefault;

/** Samples for DatabaseThreatDetectionPolicies CreateOrUpdate. */
public final class Main {
    /*
     * x-ms-original-file: specification/sql/resource-manager/Microsoft.Sql/stable/2014-04-01/examples/DatabaseSecurityAlertCreateMax.json
     */
    /**
     * Sample code: Create database security alert policy max.
     *
     * @param azure The entry point for accessing resource management APIs in Azure.
     */
    public static void createDatabaseSecurityAlertPolicyMax(com.azure.resourcemanager.AzureResourceManager azure) {
        azure
            .sqlServers()
            .manager()
            .serviceClient()
            .getDatabaseThreatDetectionPolicies()
            .createOrUpdateWithResponse(
                "securityalert-4799",
                "securityalert-6440",
                "testdb",
                SecurityAlertPolicyName.DEFAULT,
                new DatabaseSecurityAlertPolicyInner()
                    .withState(SecurityAlertPolicyState.ENABLED)
                    .withDisabledAlerts("Sql_Injection;Usage_Anomaly;")
                    .withEmailAddresses("test@microsoft.com;user@microsoft.com")
                    .withEmailAccountAdmins(SecurityAlertPolicyEmailAccountAdmins.ENABLED)
                    .withStorageEndpoint("https://mystorage.blob.core.windows.net")
                    .withStorageAccountAccessKey(
                        "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==")
                    .withRetentionDays(6)
                    .withUseServerDefault(SecurityAlertPolicyUseServerDefault.ENABLED),
                Context.NONE);
    }
}

To use the Azure SDK library in your project, see this documentation. To provide feedback on this code sample, open a GitHub issue

示例响应

状态代码:: 200

{
  "id": "/subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/securityalert-4799/providers/Microsoft.Sql/servers/securityalert-6440/databases/testdb",
  "name": "default",
  "type": "Microsoft.Sql/servers/databases/securityAlertPolicies",
  "kind": "V12",
  "properties": {
    "state": "Enabled",
    "emailAccountAdmins": "Enabled",
    "emailAddresses": "test@microsoft.com;user@microsoft.com",
    "disabledAlerts": "Sql_Injection;Usage_Anomaly",
    "retentionDays": 6,
    "storageAccountAccessKey": "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==",
    "storageEndpoint": "https://mystorage.blob.core.windows.net",
    "useServerDefault": "Enabled"
  }
}

状态代码:: 201

{
  "id": "/subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/securityalert-4799/providers/Microsoft.Sql/servers/securityalert-6440/databases/testdb",
  "name": "default",
  "type": "Microsoft.Sql/servers/databases/securityAlertPolicies",
  "kind": "V12",
  "properties": {
    "state": "Enabled",
    "emailAccountAdmins": "Enabled",
    "emailAddresses": "test@microsoft.com;user@microsoft.com",
    "disabledAlerts": "Access_Anomaly;Usage_Anomaly",
    "retentionDays": 6,
    "storageAccountAccessKey": "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==",
    "storageEndpoint": "https://mystorage.blob.core.windows.net",
    "useServerDefault": "Enabled"
  }
}

Create database security alert policy min

示例请求

HTTP
Java

PUT https://management.azure.com/subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/securityalert-4799/providers/Microsoft.Sql/servers/securityalert-6440/databases/testdb/securityAlertPolicies/default?api-version=2014-04-01

{
  "properties": {
    "state": "Enabled",
    "storageAccountAccessKey": "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==",
    "storageEndpoint": "https://mystorage.blob.core.windows.net"
  }
}

import com.azure.core.util.Context;
import com.azure.resourcemanager.sql.fluent.models.DatabaseSecurityAlertPolicyInner;
import com.azure.resourcemanager.sql.models.SecurityAlertPolicyName;
import com.azure.resourcemanager.sql.models.SecurityAlertPolicyState;

/** Samples for DatabaseThreatDetectionPolicies CreateOrUpdate. */
public final class Main {
    /*
     * x-ms-original-file: specification/sql/resource-manager/Microsoft.Sql/stable/2014-04-01/examples/DatabaseSecurityAlertCreateMin.json
     */
    /**
     * Sample code: Create database security alert policy min.
     *
     * @param azure The entry point for accessing resource management APIs in Azure.
     */
    public static void createDatabaseSecurityAlertPolicyMin(com.azure.resourcemanager.AzureResourceManager azure) {
        azure
            .sqlServers()
            .manager()
            .serviceClient()
            .getDatabaseThreatDetectionPolicies()
            .createOrUpdateWithResponse(
                "securityalert-4799",
                "securityalert-6440",
                "testdb",
                SecurityAlertPolicyName.DEFAULT,
                new DatabaseSecurityAlertPolicyInner()
                    .withState(SecurityAlertPolicyState.ENABLED)
                    .withStorageEndpoint("https://mystorage.blob.core.windows.net")
                    .withStorageAccountAccessKey(
                        "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD=="),
                Context.NONE);
    }
}

To use the Azure SDK library in your project, see this documentation. To provide feedback on this code sample, open a GitHub issue

示例响应

状态代码:: 200

{
  "id": "/subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/securityalert-4799/providers/Microsoft.Sql/servers/securityalert-6440/databases/testdb",
  "name": "default",
  "type": "Microsoft.Sql/servers/databases/securityAlertPolicies",
  "kind": "V12",
  "properties": {
    "state": "Enabled",
    "emailAccountAdmins": "Enabled",
    "emailAddresses": "",
    "disabledAlerts": "",
    "retentionDays": 0,
    "storageAccountAccessKey": "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==",
    "storageEndpoint": "https://mystorage.blob.core.windows.net",
    "useServerDefault": "Enabled"
  }
}

状态代码:: 201

{
  "id": "/subscriptions/00000000-1111-2222-3333-444444444444/resourceGroups/securityalert-4799/providers/Microsoft.Sql/servers/securityalert-6440/databases/testdb",
  "name": "default",
  "type": "Microsoft.Sql/servers/databases/securityAlertPolicies",
  "kind": "V12",
  "properties": {
    "state": "Enabled",
    "emailAccountAdmins": "Enabled",
    "emailAddresses": "",
    "disabledAlerts": "",
    "retentionDays": 0,
    "storageAccountAccessKey": "sdlfkjabc+sdlfkjsdlkfsjdfLDKFTERLKFDFKLjsdfksjdflsdkfD2342309432849328476458/3RSD==",
    "storageEndpoint": "https://mystorage.blob.core.windows.net",
    "useServerDefault": "Enabled"
  }
}

定义

名称	说明
DatabaseSecurityAlertPolicy	包含有关数据库威胁检测策略的信息。
SecurityAlertPolicyEmailAccountAdmins	指定警报将发送到帐户管理员。
SecurityAlertPolicyName	安全警报策略的名称。
SecurityAlertPolicyState	指定策略的状态。如果状态为“已启用”，则需要 storageEndpoint 和 storageAccountAccessKey。
SecurityAlertPolicyUseServerDefault	指定是否使用默认服务器策略。

DatabaseSecurityAlertPolicy

Object

包含有关数据库威胁检测策略的信息。

名称	类型	说明
id	string	资源 ID。
kind	string	资源类型。
location	string	资源所在的地理位置
name	string	资源名称。
properties.disabledAlerts	string	指定已禁用的警报的分号分隔列表，或指定空字符串以禁用无警报。可能的值：Sql_Injection;Sql_Injection_Vulnerability;Access_Anomaly;Data_Exfiltration;Unsafe_Action。
properties.emailAccountAdmins	SecurityAlertPolicyEmailAccountAdmins	指定警报将发送到帐户管理员。
properties.emailAddresses	string	指定警报发送到的电子邮件地址的分号分隔列表。
properties.retentionDays	integer (int32)	指定要保留在威胁检测审核日志中的天数。
properties.state	SecurityAlertPolicyState	指定策略的状态。如果状态为“已启用”，则需要 storageEndpoint 和 storageAccountAccessKey。
properties.storageAccountAccessKey	string	指定威胁检测审核存储帐户的标识符密钥。如果状态为“已启用”，则需要 storageAccountAccessKey。
properties.storageEndpoint	string	指定 blob 存储终结点（例如 `https://MyAccount.blob.core.windows.net`）。此 Blob 存储将保存所有威胁检测审核日志。如果状态为“已启用”，则需要 storageEndpoint。
properties.useServerDefault	SecurityAlertPolicyUseServerDefault	指定是否使用默认服务器策略。
type	string	资源类型。

SecurityAlertPolicyEmailAccountAdmins

枚举

指定警报将发送到帐户管理员。

值	说明
Enabled
Disabled

SecurityAlertPolicyName

枚举

安全警报策略的名称。

值	说明
default

SecurityAlertPolicyState

枚举

指定策略的状态。如果状态为“已启用”，则需要 storageEndpoint 和 storageAccountAccessKey。

值	说明
New
Enabled
Disabled

SecurityAlertPolicyUseServerDefault

枚举

指定是否使用默认服务器策略。

值	说明
Enabled
Disabled

通过

Database Threat Detection Policies - Create Or Update

URI 参数

请求正文

响应

示例

Create database security alert policy max

示例请求

示例响应

Create database security alert policy min

示例请求

示例响应

定义

DatabaseSecurityAlertPolicy

SecurityAlertPolicyEmailAccountAdmins

SecurityAlertPolicyName

SecurityAlertPolicyState

SecurityAlertPolicyUseServerDefault