Blog Post

Security, Compliance, and Identity Blog
2 MIN READ

Microsoft Purview DevOps policies for Azure SQL Database is now generally available

inward-eye's avatar
inward-eye
Icon for Microsoft rankMicrosoft
Apr 03, 2023

In a prior blog, we announced the General Availability (GA) of the Microsoft Purview DevOps policies integration with SQL Server 2022 (Arc-enabled). Today, we are launching DevOps policies for Azure SQL Database into GA.

 

In a nutshell, you can use DevOps policies to provision access to database system metadata at-scale, securely and inexpensively. Who needs that access? Your internal IT/DevOps personnel or your external contractors that are tasked with monitoring health, tuning performance, and reviewing audit information in SQL systems.

 

With DevOps policies, you can now manage access to SQL Dynamic Management Views and Functions (DMVs and DMFs) from a central place in the cloud, in a simple experience that provides visibility on who has access to what. No need to directly connect to databases or to explicitly create logins or users on a server.

 

In the screenshot below, you see DevOps policies for Azure SQL Database, SQL Server 2022 (Arc-enabled), Azure SQL MI, and also on an entire Azure resource group.

 

Figure 1: Example of DevOps policies

 

The benefits of Microsoft Purview DevOps policies have been discussed in prior blogs. We link here them and a few more resources, to answer some common questions:

 

Thanks for reading!

Updated Mar 24, 2023
Version 1.0