Control types for @turbot/azure-synapseanalytics
- Azure > Synapse Analytics > SQL Pool > Active
- Azure > Synapse Analytics > SQL Pool > Approved
- Azure > Synapse Analytics > SQL Pool > CMDB
- Azure > Synapse Analytics > SQL Pool > Discovery
- Azure > Synapse Analytics > SQL Pool > Tags
- Azure > Synapse Analytics > Workspace > Active
- Azure > Synapse Analytics > Workspace > Approved
- Azure > Synapse Analytics > Workspace > CMDB
- Azure > Synapse Analytics > Workspace > Discovery
- Azure > Synapse Analytics > Workspace > Tags
Azure > Synapse Analytics > SQL Pool > Active
Take an action when an Azure Synapse Analytics sql pool is not active based on theAzure > Synapse Analytics > SQL Pool > Active > * policies
.
The Active control determines whether the resource is in active use, and if not, has
the ability to delete / cleanup the resource. When running an automated compliance
environment, it's common to end up with a wide range of alarms that are difficult
and time consuming to clear. The Active control brings automated, well-defined
control to this process.
The Active control checks the status of all defined Active policies for the
resource (Azure > Synapse Analytics > SQL Pool > Active > *
),
raises an alarm, and takes the defined enforcement action. Each Active
sub-policy can calculate a status of active, inactive or skipped. Generally,
if the resource appears to be Active for any reason it will be considered Active.
Note: In contrast with Approved, where if the resource appears to be Unapproved
for any reason it will be considered Unapproved.
See Active for more information.
tmod:@turbot/azure-synapseanalytics#/control/types/sqlPoolActive
Azure > Synapse Analytics > SQL Pool > Approved
Take an action when an Azure Synapse Analytics sql pool is not approved based on Azure > Synapse Analytics > SQL Pool > Approved > * policies
.
The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.
For any enforcement actions that specify if new
, e.g., Enforce: Delete unapproved if new
, this control will only take the enforcement actions for resources created within the last 60 minutes.
See Approved for more information.
tmod:@turbot/azure-synapseanalytics#/control/types/sqlPoolApproved
Azure > Synapse Analytics > SQL Pool > CMDB
Record and synchronize details for the Azure Synapse Analytics sql pool into the CMDB.
The CMDB control is
responsible for populating and updating all the attributes for that
resource type in the Guardrails CMDB.
Note: If CMDB is set to Skip for a resource, then it will not be added
to the CMDB, and no controls that target it will run.
tmod:@turbot/azure-synapseanalytics#/control/types/sqlPoolCmdb
Azure > Synapse Analytics > SQL Pool > Discovery
Discover all Azure Synapse Analytics sql pool resources and add them to the CMDB.
The Discovery control is responsible for finding resources of a specific type. It periodically searches for new resources and saves them to the CMDB. Once discovered, resources are then responsible for tracking changes to themselves through the CMDB control.
tmod:@turbot/azure-synapseanalytics#/control/types/sqlPoolDiscovery
Azure > Synapse Analytics > SQL Pool > Tags
Take an action when an Azure Synapse Analytics sql pool tags is not updated based on the Azure > Synapse Analytics > SQL Pool > Tags > *
policies.
If the resource is not updated with the tags defined in Azure > Synapse Analytics > SQL Pool > Tags > Template
, this control raises an alarm and takes the defined enforcement action.
See Tags for more information.
tmod:@turbot/azure-synapseanalytics#/control/types/sqlPoolTags
Azure > Synapse Analytics > Workspace > Active
Take an action when an Azure Synapse Analytics workspace is not active based on theAzure > Synapse Analytics > Workspace > Active > * policies
.
The Active control determines whether the resource is in active use, and if not, has
the ability to delete / cleanup the resource. When running an automated compliance
environment, it's common to end up with a wide range of alarms that are difficult
and time consuming to clear. The Active control brings automated, well-defined
control to this process.
The Active control checks the status of all defined Active policies for the
resource (Azure > Synapse Analytics > Workspace > Active > *
),
raises an alarm, and takes the defined enforcement action. Each Active
sub-policy can calculate a status of active, inactive or skipped. Generally,
if the resource appears to be Active for any reason it will be considered Active.
Note: In contrast with Approved, where if the resource appears to be Unapproved
for any reason it will be considered Unapproved.
See Active for more information.
tmod:@turbot/azure-synapseanalytics#/control/types/synapseWorkspaceActive
Azure > Synapse Analytics > Workspace > Approved
Take an action when an Azure Synapse Analytics workspace is not approved based on Azure > Synapse Analytics > Workspace > Approved > * policies
.
The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.
For any enforcement actions that specify if new
, e.g., Enforce: Delete unapproved if new
, this control will only take the enforcement actions for resources created within the last 60 minutes.
See Approved for more information.
tmod:@turbot/azure-synapseanalytics#/control/types/synapseWorkspaceApproved
Azure > Synapse Analytics > Workspace > CMDB
Record and synchronize details for the Azure Synapse Analytics workspace into the CMDB.
The CMDB control is
responsible for populating and updating all the attributes for that
resource type in the Guardrails CMDB.
Note: If CMDB is set to Skip for a resource, then it will not be added
to the CMDB, and no controls that target it will run.
CMDB controls also use the Regions policy associated with the resource. If
region is not in Azure > Synapse Analytics > Workspace > Regions
policy, the CMDB control will delete the
resource from the CMDB.
tmod:@turbot/azure-synapseanalytics#/control/types/synapseWorkspaceCmdb
Azure > Synapse Analytics > Workspace > Discovery
Discover all Azure Synapse Analytics workspace resources and add them to the CMDB.
The Discovery control is responsible for finding resources of a specific type. It periodically searches for new resources and saves them to the CMDB. Once discovered, resources are then responsible for tracking changes to themselves through the CMDB control.
Note: Discovery and CMDB controls also use the Regions policy associated with the resource. If the region is not in Azure > Synapse Analytics > Workspace > Regions
policy, the CMDB control will delete the resource from the CMDB.
tmod:@turbot/azure-synapseanalytics#/control/types/synapseWorkspaceDiscovery
Azure > Synapse Analytics > Workspace > Tags
Take an action when an Azure Synapse Analytics workspace tags is not updated based on the Azure > Synapse Analytics > Workspace > Tags > *
policies.
If the resource is not updated with the tags defined in Azure > Synapse Analytics > Workspace > Tags > Template
, this control raises an alarm and takes the defined enforcement action.
See Tags for more information.
tmod:@turbot/azure-synapseanalytics#/control/types/synapseWorkspaceTags