Issue: After enabling the Storage Account firewall, Azure SQL Database audit logs are not being written.
Mitigation steps:
If your storage account meets all this pre-requisites in this documentation and the audit is still not being written, please follow the steps below:
By turning the audit on the Azure SQL Server ON after the Storage Account firewall is enabled, if the user has appropriate permissions, it should perform the necessary configurations in terms of permissions to the service.
If the audit is still failing, please open a support request and let us know if you have received any error messages during the steps above and what permissions the server has in the Storage Account IAM, with the scope filtered by ‘This resource’:
Note: After performing the steps above, the Server should normally have the permission “Storage Blob Data Contributor” in the Storage Account
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.