Docs Home Pulumi IaC Pulumi ESC Pulumi Insights Pulumi Cloud Packages Tutorials
  1. Packages
  2. Azure Native v2
  3. API Docs
  4. sql
  5. DatabaseVulnerabilityAssessment
These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi
pulumi/pulumi-azure-native

azure-native-v2.sql.DatabaseVulnerabilityAssessment

Explore with Pulumi AI

These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi
pulumi/pulumi-azure-native

A database vulnerability assessment. Azure REST API version: 2021-11-01. Prior API version in Azure Native 1.x: 2020-11-01-preview.

Other available API versions: 2022-11-01-preview, 2023-02-01-preview, 2023-05-01-preview, 2023-08-01-preview, 2024-05-01-preview.

Example Usage

Create a database's vulnerability assessment with all parameters

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var databaseVulnerabilityAssessment = new AzureNative.Sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", new()
    {
        DatabaseName = "testdb",
        RecurringScans = new AzureNative.Sql.Inputs.VulnerabilityAssessmentRecurringScansPropertiesArgs
        {
            EmailSubscriptionAdmins = true,
            Emails = new[]
            {
                "email1@mail.com",
                "email2@mail.com",
            },
            IsEnabled = true,
        },
        ResourceGroupName = "vulnerabilityaseessmenttest-4799",
        ServerName = "vulnerabilityaseessmenttest-6440",
        StorageAccountAccessKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
        StorageContainerPath = "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
        StorageContainerSasKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
        VulnerabilityAssessmentName = "default",
    });

});
Copy
package main

import (
	sql "github.com/pulumi/pulumi-azure-native-sdk/sql/v2"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := sql.NewDatabaseVulnerabilityAssessment(ctx, "databaseVulnerabilityAssessment", &sql.DatabaseVulnerabilityAssessmentArgs{
			DatabaseName: pulumi.String("testdb"),
			RecurringScans: &sql.VulnerabilityAssessmentRecurringScansPropertiesArgs{
				EmailSubscriptionAdmins: pulumi.Bool(true),
				Emails: pulumi.StringArray{
					pulumi.String("email1@mail.com"),
					pulumi.String("email2@mail.com"),
				},
				IsEnabled: pulumi.Bool(true),
			},
			ResourceGroupName:           pulumi.String("vulnerabilityaseessmenttest-4799"),
			ServerName:                  pulumi.String("vulnerabilityaseessmenttest-6440"),
			StorageAccountAccessKey:     pulumi.String("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"),
			StorageContainerPath:        pulumi.String("https://myStorage.blob.core.windows.net/vulnerability-assessment/"),
			StorageContainerSasKey:      pulumi.String("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"),
			VulnerabilityAssessmentName: pulumi.String("default"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.sql.DatabaseVulnerabilityAssessment;
import com.pulumi.azurenative.sql.DatabaseVulnerabilityAssessmentArgs;
import com.pulumi.azurenative.sql.inputs.VulnerabilityAssessmentRecurringScansPropertiesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var databaseVulnerabilityAssessment = new DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", DatabaseVulnerabilityAssessmentArgs.builder()
            .databaseName("testdb")
            .recurringScans(VulnerabilityAssessmentRecurringScansPropertiesArgs.builder()
                .emailSubscriptionAdmins(true)
                .emails(                
                    "email1@mail.com",
                    "email2@mail.com")
                .isEnabled(true)
                .build())
            .resourceGroupName("vulnerabilityaseessmenttest-4799")
            .serverName("vulnerabilityaseessmenttest-6440")
            .storageAccountAccessKey("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX")
            .storageContainerPath("https://myStorage.blob.core.windows.net/vulnerability-assessment/")
            .storageContainerSasKey("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX")
            .vulnerabilityAssessmentName("default")
            .build());

    }
}
Copy
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const databaseVulnerabilityAssessment = new azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", {
    databaseName: "testdb",
    recurringScans: {
        emailSubscriptionAdmins: true,
        emails: [
            "email1@mail.com",
            "email2@mail.com",
        ],
        isEnabled: true,
    },
    resourceGroupName: "vulnerabilityaseessmenttest-4799",
    serverName: "vulnerabilityaseessmenttest-6440",
    storageAccountAccessKey: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    storageContainerPath: "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
    storageContainerSasKey: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    vulnerabilityAssessmentName: "default",
});
Copy
import pulumi
import pulumi_azure_native as azure_native

database_vulnerability_assessment = azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment",
    database_name="testdb",
    recurring_scans={
        "email_subscription_admins": True,
        "emails": [
            "email1@mail.com",
            "email2@mail.com",
        ],
        "is_enabled": True,
    },
    resource_group_name="vulnerabilityaseessmenttest-4799",
    server_name="vulnerabilityaseessmenttest-6440",
    storage_account_access_key="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    storage_container_path="https://myStorage.blob.core.windows.net/vulnerability-assessment/",
    storage_container_sas_key="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    vulnerability_assessment_name="default")
Copy
resources:
  databaseVulnerabilityAssessment:
    type: azure-native:sql:DatabaseVulnerabilityAssessment
    properties:
      databaseName: testdb
      recurringScans:
        emailSubscriptionAdmins: true
        emails:
          - email1@mail.com
          - email2@mail.com
        isEnabled: true
      resourceGroupName: vulnerabilityaseessmenttest-4799
      serverName: vulnerabilityaseessmenttest-6440
      storageAccountAccessKey: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
      storageContainerPath: https://myStorage.blob.core.windows.net/vulnerability-assessment/
      storageContainerSasKey: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
      vulnerabilityAssessmentName: default
Copy

Create a database's vulnerability assessment with minimal parameters, when storageAccountAccessKey is specified

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var databaseVulnerabilityAssessment = new AzureNative.Sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", new()
    {
        DatabaseName = "testdb",
        ResourceGroupName = "vulnerabilityaseessmenttest-4799",
        ServerName = "vulnerabilityaseessmenttest-6440",
        StorageAccountAccessKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
        StorageContainerPath = "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
        VulnerabilityAssessmentName = "default",
    });

});
Copy
package main

import (
	sql "github.com/pulumi/pulumi-azure-native-sdk/sql/v2"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := sql.NewDatabaseVulnerabilityAssessment(ctx, "databaseVulnerabilityAssessment", &sql.DatabaseVulnerabilityAssessmentArgs{
			DatabaseName:                pulumi.String("testdb"),
			ResourceGroupName:           pulumi.String("vulnerabilityaseessmenttest-4799"),
			ServerName:                  pulumi.String("vulnerabilityaseessmenttest-6440"),
			StorageAccountAccessKey:     pulumi.String("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"),
			StorageContainerPath:        pulumi.String("https://myStorage.blob.core.windows.net/vulnerability-assessment/"),
			VulnerabilityAssessmentName: pulumi.String("default"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.sql.DatabaseVulnerabilityAssessment;
import com.pulumi.azurenative.sql.DatabaseVulnerabilityAssessmentArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var databaseVulnerabilityAssessment = new DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", DatabaseVulnerabilityAssessmentArgs.builder()
            .databaseName("testdb")
            .resourceGroupName("vulnerabilityaseessmenttest-4799")
            .serverName("vulnerabilityaseessmenttest-6440")
            .storageAccountAccessKey("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX")
            .storageContainerPath("https://myStorage.blob.core.windows.net/vulnerability-assessment/")
            .vulnerabilityAssessmentName("default")
            .build());

    }
}
Copy
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const databaseVulnerabilityAssessment = new azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", {
    databaseName: "testdb",
    resourceGroupName: "vulnerabilityaseessmenttest-4799",
    serverName: "vulnerabilityaseessmenttest-6440",
    storageAccountAccessKey: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    storageContainerPath: "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
    vulnerabilityAssessmentName: "default",
});
Copy
import pulumi
import pulumi_azure_native as azure_native

database_vulnerability_assessment = azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment",
    database_name="testdb",
    resource_group_name="vulnerabilityaseessmenttest-4799",
    server_name="vulnerabilityaseessmenttest-6440",
    storage_account_access_key="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    storage_container_path="https://myStorage.blob.core.windows.net/vulnerability-assessment/",
    vulnerability_assessment_name="default")
Copy
resources:
  databaseVulnerabilityAssessment:
    type: azure-native:sql:DatabaseVulnerabilityAssessment
    properties:
      databaseName: testdb
      resourceGroupName: vulnerabilityaseessmenttest-4799
      serverName: vulnerabilityaseessmenttest-6440
      storageAccountAccessKey: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
      storageContainerPath: https://myStorage.blob.core.windows.net/vulnerability-assessment/
      vulnerabilityAssessmentName: default
Copy

Create a database's vulnerability assessment with minimal parameters, when storageContainerSasKey is specified

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var databaseVulnerabilityAssessment = new AzureNative.Sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", new()
    {
        DatabaseName = "testdb",
        ResourceGroupName = "vulnerabilityaseessmenttest-4799",
        ServerName = "vulnerabilityaseessmenttest-6440",
        StorageContainerPath = "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
        StorageContainerSasKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
        VulnerabilityAssessmentName = "default",
    });

});
Copy
package main

import (
	sql "github.com/pulumi/pulumi-azure-native-sdk/sql/v2"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := sql.NewDatabaseVulnerabilityAssessment(ctx, "databaseVulnerabilityAssessment", &sql.DatabaseVulnerabilityAssessmentArgs{
			DatabaseName:                pulumi.String("testdb"),
			ResourceGroupName:           pulumi.String("vulnerabilityaseessmenttest-4799"),
			ServerName:                  pulumi.String("vulnerabilityaseessmenttest-6440"),
			StorageContainerPath:        pulumi.String("https://myStorage.blob.core.windows.net/vulnerability-assessment/"),
			StorageContainerSasKey:      pulumi.String("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"),
			VulnerabilityAssessmentName: pulumi.String("default"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.sql.DatabaseVulnerabilityAssessment;
import com.pulumi.azurenative.sql.DatabaseVulnerabilityAssessmentArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var databaseVulnerabilityAssessment = new DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", DatabaseVulnerabilityAssessmentArgs.builder()
            .databaseName("testdb")
            .resourceGroupName("vulnerabilityaseessmenttest-4799")
            .serverName("vulnerabilityaseessmenttest-6440")
            .storageContainerPath("https://myStorage.blob.core.windows.net/vulnerability-assessment/")
            .storageContainerSasKey("XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX")
            .vulnerabilityAssessmentName("default")
            .build());

    }
}
Copy
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const databaseVulnerabilityAssessment = new azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment", {
    databaseName: "testdb",
    resourceGroupName: "vulnerabilityaseessmenttest-4799",
    serverName: "vulnerabilityaseessmenttest-6440",
    storageContainerPath: "https://myStorage.blob.core.windows.net/vulnerability-assessment/",
    storageContainerSasKey: "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    vulnerabilityAssessmentName: "default",
});
Copy
import pulumi
import pulumi_azure_native as azure_native

database_vulnerability_assessment = azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessment",
    database_name="testdb",
    resource_group_name="vulnerabilityaseessmenttest-4799",
    server_name="vulnerabilityaseessmenttest-6440",
    storage_container_path="https://myStorage.blob.core.windows.net/vulnerability-assessment/",
    storage_container_sas_key="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    vulnerability_assessment_name="default")
Copy
resources:
  databaseVulnerabilityAssessment:
    type: azure-native:sql:DatabaseVulnerabilityAssessment
    properties:
      databaseName: testdb
      resourceGroupName: vulnerabilityaseessmenttest-4799
      serverName: vulnerabilityaseessmenttest-6440
      storageContainerPath: https://myStorage.blob.core.windows.net/vulnerability-assessment/
      storageContainerSasKey: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
      vulnerabilityAssessmentName: default
Copy

Create DatabaseVulnerabilityAssessment Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new DatabaseVulnerabilityAssessment(name: string, args: DatabaseVulnerabilityAssessmentArgs, opts?: CustomResourceOptions);
@overload
def DatabaseVulnerabilityAssessment(resource_name: str,
                                    args: DatabaseVulnerabilityAssessmentArgs,
                                    opts: Optional[ResourceOptions] = None)

@overload
def DatabaseVulnerabilityAssessment(resource_name: str,
                                    opts: Optional[ResourceOptions] = None,
                                    database_name: Optional[str] = None,
                                    resource_group_name: Optional[str] = None,
                                    server_name: Optional[str] = None,
                                    recurring_scans: Optional[VulnerabilityAssessmentRecurringScansPropertiesArgs] = None,
                                    storage_account_access_key: Optional[str] = None,
                                    storage_container_path: Optional[str] = None,
                                    storage_container_sas_key: Optional[str] = None,
                                    vulnerability_assessment_name: Optional[str] = None)
func NewDatabaseVulnerabilityAssessment(ctx *Context, name string, args DatabaseVulnerabilityAssessmentArgs, opts ...ResourceOption) (*DatabaseVulnerabilityAssessment, error)
public DatabaseVulnerabilityAssessment(string name, DatabaseVulnerabilityAssessmentArgs args, CustomResourceOptions? opts = null)
public DatabaseVulnerabilityAssessment(String name, DatabaseVulnerabilityAssessmentArgs args)
public DatabaseVulnerabilityAssessment(String name, DatabaseVulnerabilityAssessmentArgs args, CustomResourceOptions options)

type: azure-native:sql:DatabaseVulnerabilityAssessment
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. DatabaseVulnerabilityAssessmentArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. DatabaseVulnerabilityAssessmentArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. DatabaseVulnerabilityAssessmentArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. DatabaseVulnerabilityAssessmentArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. DatabaseVulnerabilityAssessmentArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var databaseVulnerabilityAssessmentResource = new AzureNative.Sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessmentResource", new()
{
    DatabaseName = "string",
    ResourceGroupName = "string",
    ServerName = "string",
    RecurringScans = 
    {
        { "emailSubscriptionAdmins", false },
        { "emails", new[]
        {
            "string",
        } },
        { "isEnabled", false },
    },
    StorageAccountAccessKey = "string",
    StorageContainerPath = "string",
    StorageContainerSasKey = "string",
    VulnerabilityAssessmentName = "string",
});
Copy
example, err := sql.NewDatabaseVulnerabilityAssessment(ctx, "databaseVulnerabilityAssessmentResource", &sql.DatabaseVulnerabilityAssessmentArgs{
	DatabaseName:      "string",
	ResourceGroupName: "string",
	ServerName:        "string",
	RecurringScans: map[string]interface{}{
		"emailSubscriptionAdmins": false,
		"emails": []string{
			"string",
		},
		"isEnabled": false,
	},
	StorageAccountAccessKey:     "string",
	StorageContainerPath:        "string",
	StorageContainerSasKey:      "string",
	VulnerabilityAssessmentName: "string",
})
Copy
var databaseVulnerabilityAssessmentResource = new DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessmentResource", DatabaseVulnerabilityAssessmentArgs.builder()
    .databaseName("string")
    .resourceGroupName("string")
    .serverName("string")
    .recurringScans(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
    .storageAccountAccessKey("string")
    .storageContainerPath("string")
    .storageContainerSasKey("string")
    .vulnerabilityAssessmentName("string")
    .build());
Copy
database_vulnerability_assessment_resource = azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessmentResource",
    database_name=string,
    resource_group_name=string,
    server_name=string,
    recurring_scans={
        emailSubscriptionAdmins: False,
        emails: [string],
        isEnabled: False,
    },
    storage_account_access_key=string,
    storage_container_path=string,
    storage_container_sas_key=string,
    vulnerability_assessment_name=string)
Copy
const databaseVulnerabilityAssessmentResource = new azure_native.sql.DatabaseVulnerabilityAssessment("databaseVulnerabilityAssessmentResource", {
    databaseName: "string",
    resourceGroupName: "string",
    serverName: "string",
    recurringScans: {
        emailSubscriptionAdmins: false,
        emails: ["string"],
        isEnabled: false,
    },
    storageAccountAccessKey: "string",
    storageContainerPath: "string",
    storageContainerSasKey: "string",
    vulnerabilityAssessmentName: "string",
});
Copy
type: azure-native:sql:DatabaseVulnerabilityAssessment
properties:
    databaseName: string
    recurringScans:
        emailSubscriptionAdmins: false
        emails:
            - string
        isEnabled: false
    resourceGroupName: string
    serverName: string
    storageAccountAccessKey: string
    storageContainerPath: string
    storageContainerSasKey: string
    vulnerabilityAssessmentName: string
Copy

DatabaseVulnerabilityAssessment Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The DatabaseVulnerabilityAssessment resource accepts the following input properties:

DatabaseName
This property is required.
Changes to this property will trigger replacement.
string
The name of the database for which the vulnerability assessment is defined.
ResourceGroupName
This property is required.
Changes to this property will trigger replacement.
string
The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
ServerName
This property is required.
Changes to this property will trigger replacement.
string
The name of the server.
RecurringScans Pulumi.AzureNative.Sql.Inputs.VulnerabilityAssessmentRecurringScansProperties
The recurring scans settings
StorageAccountAccessKey string
Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall
StorageContainerPath string
A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
StorageContainerSasKey string
A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall
VulnerabilityAssessmentName Changes to this property will trigger replacement. string
The name of the vulnerability assessment.
DatabaseName
This property is required.
Changes to this property will trigger replacement.
string
The name of the database for which the vulnerability assessment is defined.
ResourceGroupName
This property is required.
Changes to this property will trigger replacement.
string
The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
ServerName
This property is required.
Changes to this property will trigger replacement.
string
The name of the server.
RecurringScans VulnerabilityAssessmentRecurringScansPropertiesArgs
The recurring scans settings
StorageAccountAccessKey string
Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall
StorageContainerPath string
A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
StorageContainerSasKey string
A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall
VulnerabilityAssessmentName Changes to this property will trigger replacement. string
The name of the vulnerability assessment.
databaseName
This property is required.
Changes to this property will trigger replacement.
String
The name of the database for which the vulnerability assessment is defined.
resourceGroupName
This property is required.
Changes to this property will trigger replacement.
String
The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
serverName
This property is required.
Changes to this property will trigger replacement.
String
The name of the server.
recurringScans VulnerabilityAssessmentRecurringScansProperties
The recurring scans settings
storageAccountAccessKey String
Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall
storageContainerPath String
A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
storageContainerSasKey String
A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall
vulnerabilityAssessmentName Changes to this property will trigger replacement. String
The name of the vulnerability assessment.
databaseName
This property is required.
Changes to this property will trigger replacement.
string
The name of the database for which the vulnerability assessment is defined.
resourceGroupName
This property is required.
Changes to this property will trigger replacement.
string
The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
serverName
This property is required.
Changes to this property will trigger replacement.
string
The name of the server.
recurringScans VulnerabilityAssessmentRecurringScansProperties
The recurring scans settings
storageAccountAccessKey string
Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall
storageContainerPath string
A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
storageContainerSasKey string
A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall
vulnerabilityAssessmentName Changes to this property will trigger replacement. string
The name of the vulnerability assessment.
database_name
This property is required.
Changes to this property will trigger replacement.
str
The name of the database for which the vulnerability assessment is defined.
resource_group_name
This property is required.
Changes to this property will trigger replacement.
str
The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
server_name
This property is required.
Changes to this property will trigger replacement.
str
The name of the server.
recurring_scans VulnerabilityAssessmentRecurringScansPropertiesArgs
The recurring scans settings
storage_account_access_key str
Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall
storage_container_path str
A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
storage_container_sas_key str
A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall
vulnerability_assessment_name Changes to this property will trigger replacement. str
The name of the vulnerability assessment.
databaseName
This property is required.
Changes to this property will trigger replacement.
String
The name of the database for which the vulnerability assessment is defined.
resourceGroupName
This property is required.
Changes to this property will trigger replacement.
String
The name of the resource group that contains the resource. You can obtain this value from the Azure Resource Manager API or the portal.
serverName
This property is required.
Changes to this property will trigger replacement.
String
The name of the server.
recurringScans Property Map
The recurring scans settings
storageAccountAccessKey String
Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall
storageContainerPath String
A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set
storageContainerSasKey String
A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall
vulnerabilityAssessmentName Changes to this property will trigger replacement. String
The name of the vulnerability assessment.

Outputs

All input properties are implicitly available as output properties. Additionally, the DatabaseVulnerabilityAssessment resource produces the following output properties:

Id string
The provider-assigned unique ID for this managed resource.
Name string
Resource name.
Type string
Resource type.
Id string
The provider-assigned unique ID for this managed resource.
Name string
Resource name.
Type string
Resource type.
id String
The provider-assigned unique ID for this managed resource.
name String
Resource name.
type String
Resource type.
id string
The provider-assigned unique ID for this managed resource.
name string
Resource name.
type string
Resource type.
id str
The provider-assigned unique ID for this managed resource.
name str
Resource name.
type str
Resource type.
id String
The provider-assigned unique ID for this managed resource.
name String
Resource name.
type String
Resource type.

Supporting Types

VulnerabilityAssessmentRecurringScansProperties
, VulnerabilityAssessmentRecurringScansPropertiesArgs

EmailSubscriptionAdmins bool
Specifies that the schedule scan notification will be is sent to the subscription administrators.
Emails List<string>
Specifies an array of e-mail addresses to which the scan notification is sent.
IsEnabled bool
Recurring scans state.
EmailSubscriptionAdmins bool
Specifies that the schedule scan notification will be is sent to the subscription administrators.
Emails []string
Specifies an array of e-mail addresses to which the scan notification is sent.
IsEnabled bool
Recurring scans state.
emailSubscriptionAdmins Boolean
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
isEnabled Boolean
Recurring scans state.
emailSubscriptionAdmins boolean
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails string[]
Specifies an array of e-mail addresses to which the scan notification is sent.
isEnabled boolean
Recurring scans state.
email_subscription_admins bool
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails Sequence[str]
Specifies an array of e-mail addresses to which the scan notification is sent.
is_enabled bool
Recurring scans state.
emailSubscriptionAdmins Boolean
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
isEnabled Boolean
Recurring scans state.

VulnerabilityAssessmentRecurringScansPropertiesResponse
, VulnerabilityAssessmentRecurringScansPropertiesResponseArgs

EmailSubscriptionAdmins bool
Specifies that the schedule scan notification will be is sent to the subscription administrators.
Emails List<string>
Specifies an array of e-mail addresses to which the scan notification is sent.
IsEnabled bool
Recurring scans state.
EmailSubscriptionAdmins bool
Specifies that the schedule scan notification will be is sent to the subscription administrators.
Emails []string
Specifies an array of e-mail addresses to which the scan notification is sent.
IsEnabled bool
Recurring scans state.
emailSubscriptionAdmins Boolean
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
isEnabled Boolean
Recurring scans state.
emailSubscriptionAdmins boolean
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails string[]
Specifies an array of e-mail addresses to which the scan notification is sent.
isEnabled boolean
Recurring scans state.
email_subscription_admins bool
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails Sequence[str]
Specifies an array of e-mail addresses to which the scan notification is sent.
is_enabled bool
Recurring scans state.
emailSubscriptionAdmins Boolean
Specifies that the schedule scan notification will be is sent to the subscription administrators.
emails List<String>
Specifies an array of e-mail addresses to which the scan notification is sent.
isEnabled Boolean
Recurring scans state.

Import

An existing resource can be imported using its type token, name, and identifier, e.g.

$ pulumi import azure-native:sql:DatabaseVulnerabilityAssessment default /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/vulnerabilityAssessments/{vulnerabilityAssessmentName}
Copy

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository
azure-native-v2 pulumi/pulumi-azure-native
License
Apache-2.0
These are the docs for Azure Native v2. We recommenend using the latest version, Azure Native v3.
Azure Native v2 v2.90.0 published on Thursday, Mar 27, 2025 by Pulumi
pulumi/pulumi-azure-native