From 60f8b905aacbe94480002242ab0335734eeccf13 Mon Sep 17 00:00:00 2001 From: SDKAuto Date: Sun, 5 May 2024 14:33:12 +0000 Subject: [PATCH] CodeGen from PR 28963 in Azure/azure-rest-api-specs Merge 74b1cc5f52598e3337116bf90f54d40761f9dfd2 into 3940cd77b8d74b58d4a8b3a80388ff890052be67 --- schemas/2014-04-01/Microsoft.Sql.json | 2705 ---- schemas/2015-05-01-preview/Microsoft.Sql.json | 1623 -- schemas/2017-03-01-preview/Microsoft.Sql.json | 3021 ---- schemas/2017-10-01-preview/Microsoft.Sql.json | 1108 -- schemas/2018-06-01-preview/Microsoft.Sql.json | 1382 -- schemas/2019-06-01-preview/Microsoft.Sql.json | 1472 -- schemas/2020-02-02-preview/Microsoft.Sql.json | 8349 ----------- schemas/2020-08-01-preview/Microsoft.Sql.json | 8524 ----------- schemas/2020-11-01-preview/Microsoft.Sql.json | 8725 ----------- schemas/2021-02-01-preview/Microsoft.Sql.json | 8984 ----------- schemas/2021-05-01-preview/Microsoft.Sql.json | 9452 ------------ schemas/2021-08-01-preview/Microsoft.Sql.json | 9550 ------------ schemas/2021-11-01-preview/Microsoft.Sql.json | 9907 ------------- schemas/2021-11-01/Microsoft.Sql.json | 10438 ------------- schemas/2022-02-01-preview/Microsoft.Sql.json | 11105 -------------- schemas/2022-05-01-preview/Microsoft.Sql.json | 11169 -------------- schemas/2022-08-01-preview/Microsoft.Sql.json | 11805 --------------- schemas/2022-11-01-preview/Microsoft.Sql.json | 11717 --------------- schemas/2023-02-01-preview/Microsoft.Sql.json | 11869 --------------- schemas/2023-05-01-preview/Microsoft.Sql.json | 12325 ---------------- schemas/2023-08-01-preview/Microsoft.Sql.json | 12310 --------------- schemas/common/autogeneratedResources.json | 3426 ----- 22 files changed, 170966 deletions(-) delete mode 100644 schemas/2014-04-01/Microsoft.Sql.json delete mode 100644 schemas/2015-05-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2017-03-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2017-10-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2018-06-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2019-06-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2020-02-02-preview/Microsoft.Sql.json delete mode 100644 schemas/2020-08-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2020-11-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2021-02-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2021-05-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2021-08-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2021-11-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2021-11-01/Microsoft.Sql.json delete mode 100644 schemas/2022-02-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2022-05-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2022-08-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2022-11-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2023-02-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2023-05-01-preview/Microsoft.Sql.json delete mode 100644 schemas/2023-08-01-preview/Microsoft.Sql.json diff --git a/schemas/2014-04-01/Microsoft.Sql.json b/schemas/2014-04-01/Microsoft.Sql.json deleted file mode 100644 index 2da9e26fa3..0000000000 --- a/schemas/2014-04-01/Microsoft.Sql.json +++ /dev/null @@ -1,2705 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Represents the properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_advisors_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_communicationLinks_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_disasterRecoveryConfiguration_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/activeDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ServerAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advisors": { - "description": "Microsoft.Sql/servers/advisors", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Server Advisor.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvisorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advisors" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingPolicies": { - "description": "Microsoft.Sql/servers/auditingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the table auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTableAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_communicationLinks": { - "description": "Microsoft.Sql/servers/communicationLinks", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server communication link.", - "type": "string" - }, - "properties": { - "description": "The properties of resource.", - "oneOf": [ - { - "$ref": "#/definitions/ServerCommunicationLinkProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/communicationLinks" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the server secure connection policy.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "The properties representing the resource.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_advisors_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advisors": { - "description": "Microsoft.Sql/servers/databases/advisors", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Database Advisor.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvisorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advisors" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingPolicies": { - "description": "Microsoft.Sql/servers/databases/auditingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the table auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseTableAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_connectionPolicies": { - "description": "Microsoft.Sql/servers/databases/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the data masking policy.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "The properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the operation to perform", - "oneOf": [ - { - "pattern": "^.*/import$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Represents the properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ImportExtensionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the geo backup policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the geo backup policy.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "The geo-location where the resource lives", - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Properties of the security alert policy.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Represents the properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_disasterRecoveryConfiguration": { - "description": "Microsoft.Sql/servers/disasterRecoveryConfiguration", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the disaster recovery configuration to be created/updated.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/disasterRecoveryConfiguration" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "The properties representing the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "The properties representing the resource.", - "oneOf": [ - { - "$ref": "#/definitions/FirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdvisorProperties": { - "description": "Properties for a Database, Server or Elastic Pool Advisor.", - "properties": { - "autoExecuteValue": { - "description": "Gets the auto-execute status (whether to let the system execute the recommendations) of this advisor. Possible values are 'Enabled' and 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "autoExecuteValue" - ], - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseConnectionPolicyProperties": { - "description": "Properties of a database connection policy.", - "properties": { - "proxyDnsName": { - "description": "The fully qualified host name of the auditing proxy.", - "type": "string" - }, - "proxyPort": { - "description": "The port number of the auditing proxy.", - "type": "string" - }, - "redirectionState": { - "description": "The state of proxy redirection.", - "type": "string" - }, - "securityEnabledAccess": { - "description": "The state of security access.", - "type": "string" - }, - "state": { - "description": "The connection policy state.", - "type": "string" - }, - "useServerDefault": { - "description": "Whether server default is enabled or disabled.", - "type": "string" - }, - "visibility": { - "description": "The visibility of the auditing proxy.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "Represents the properties of a database.", - "properties": { - "collation": { - "description": "The collation of the database. If createMode is not Default, this value is ignored.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\n\nDefault: regular database creation.\n\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\n\nOnlineSecondary/NonReadableSecondary: creates a database as a (readable or nonreadable) secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\n\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\n\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\n\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\n\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\n\nCopy, NonReadableSecondary, OnlineSecondary and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Copy", - "Default", - "NonReadableSecondary", - "OnlineSecondary", - "PointInTimeRestore", - "Recovery", - "Restore", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "edition": { - "description": "The edition of the database. The DatabaseEditions enumeration contains all the valid editions. If createMode is NonReadableSecondary or OnlineSecondary, this value is ignored.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "enum": [ - "Web", - "Business", - "Basic", - "Standard", - "Premium", - "PremiumRS", - "Free", - "Stretch", - "DataWarehouse", - "System", - "System2", - "GeneralPurpose", - "BusinessCritical", - "Hyperscale" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolName": { - "description": "The name of the elastic pool the database is in. If elasticPoolName and requestedServiceObjectiveName are both updated, the value of requestedServiceObjectiveName is ignored. Not supported for DataWarehouse edition.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes. If createMode is not Default, this value is ignored. To see possible values, query the capabilities API (/subscriptions/{subscriptionId}/providers/Microsoft.Sql/locations/{locationID}/capabilities) referred to by operationId: \"Capabilities_ListByLocation.\"", - "type": "string" - }, - "readScale": { - "description": "Conditional. If the database is a geo-secondary, readScale indicates whether read-only connections are allowed to this database or not. Not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoveryServicesRecoveryPointResourceId": { - "description": "Conditional. If createMode is RestoreLongTermRetentionBackup, then this value is required. Specifies the resource ID of the recovery point to restore from.", - "type": "string" - }, - "requestedServiceObjectiveId": { - "description": "The configured service level objective ID of the database. This is the service level objective that is in the process of being applied to the database. Once successfully updated, it will match the value of currentServiceObjectiveId property. If requestedServiceObjectiveId and requestedServiceObjectiveName are both updated, the value of requestedServiceObjectiveId overrides the value of requestedServiceObjectiveName.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the service objective ids that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedServiceObjectiveName": { - "description": "The name of the configured service level objective of the database. This is the service level objective that is in the process of being applied to the database. Once successfully updated, it will match the value of serviceLevelObjective property. \r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "enum": [ - "System", - "System0", - "System1", - "System2", - "System3", - "System4", - "System2L", - "System3L", - "System4L", - "Free", - "Basic", - "S0", - "S1", - "S2", - "S3", - "S4", - "S6", - "S7", - "S9", - "S12", - "P1", - "P2", - "P3", - "P4", - "P6", - "P11", - "P15", - "PRS1", - "PRS2", - "PRS4", - "PRS6", - "DW100", - "DW200", - "DW300", - "DW400", - "DW500", - "DW600", - "DW1000", - "DW1200", - "DW1000c", - "DW1500", - "DW1500c", - "DW2000", - "DW2000c", - "DW3000", - "DW2500c", - "DW3000c", - "DW6000", - "DW5000c", - "DW6000c", - "DW7500c", - "DW10000c", - "DW15000c", - "DW30000c", - "DS100", - "DS200", - "DS300", - "DS400", - "DS500", - "DS600", - "DS1000", - "DS1200", - "DS1500", - "DS2000", - "ElasticPool" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. If createMode is Restore, this value is optional. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database. Must be greater than or equal to the source database's earliestRestoreDate value.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "Indicates the name of the sample schema to apply when creating this database. If createMode is not Default, this value is ignored. Not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Conditional. If createMode is Restore and sourceDatabaseId is the deleted database's original resource id when it existed (as opposed to its current restorable dropped database id), then this value is required. Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "Conditional. If createMode is Copy, NonReadableSecondary, OnlineSecondary, PointInTimeRestore, Recovery, or Restore, then this value is required. Specifies the resource ID of the source database. If createMode is NonReadableSecondary or OnlineSecondary, the name of the source database must be the same as the new database being created.", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSecurityAlertPolicyProperties": { - "description": "Properties for a database Threat Detection policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies the semicolon-separated list of alerts that are disabled, or empty string to disable no alerts. Possible values: Sql_Injection; Sql_Injection_Vulnerability; Access_Anomaly; Data_Exfiltration; Unsafe_Action.", - "type": "string" - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies the semicolon-separated list of e-mail addresses to which the alert is sent.", - "type": "string" - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy. If state is Enabled, storageEndpoint and storageAccountAccessKey are required.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account. If state is Enabled, storageAccountAccessKey is required.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs. If state is Enabled, storageEndpoint is required.", - "type": "string" - }, - "useServerDefault": { - "description": "Specifies whether to use the default server policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseTableAuditingPolicyProperties": { - "description": "Properties of a database table auditing policy.", - "properties": { - "auditLogsTableName": { - "description": "The audit logs table name.", - "type": "string" - }, - "auditingState": { - "description": "The state of the policy.", - "type": "string" - }, - "eventTypesToAudit": { - "description": "Comma-separated list of event types to audit.", - "type": "string" - }, - "fullAuditLogsTableName": { - "description": "The full audit logs table name.", - "type": "string" - }, - "retentionDays": { - "description": "The number of days to keep in the audit logs.", - "type": "string" - }, - "storageAccountKey": { - "description": "The key of the auditing storage account.", - "type": "string" - }, - "storageAccountName": { - "description": "The table storage account name", - "type": "string" - }, - "storageAccountResourceGroupName": { - "description": "The table storage account resource group name", - "type": "string" - }, - "storageAccountSecondaryKey": { - "description": "The secondary key of the auditing storage account.", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "The table storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageTableEndpoint": { - "description": "The storage table endpoint.", - "type": "string" - }, - "useServerDefault": { - "description": "Whether server default is enabled or disabled.", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Represents the properties of an elastic pool.", - "properties": { - "databaseDtuMax": { - "description": "The maximum DTU any one database can consume.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "databaseDtuMin": { - "description": "The minimum DTU all databases are guaranteed.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "dtu": { - "description": "The total shared DTU for the database elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "edition": { - "description": "The edition of the elastic pool.", - "oneOf": [ - { - "enum": [ - "Basic", - "Standard", - "Premium", - "GeneralPurpose", - "BusinessCritical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageMB": { - "description": "Gets storage limit for the database elastic pool in MB.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database elastic pool is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FirewallRuleProperties": { - "description": "Represents the properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' to represent all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' to represent all Azure-internal IP addresses.", - "type": "string" - } - }, - "required": [ - "startIpAddress", - "endIpAddress" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ImportExtensionProperties": { - "description": "Represents the properties for an import operation", - "properties": { - "administratorLogin": { - "description": "The name of the SQL administrator.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The password of the SQL administrator.", - "type": "string" - }, - "authenticationType": { - "description": "The authentication type.", - "oneOf": [ - { - "enum": [ - "SQL", - "ADPassword" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "The type of import operation being performed. This is always Import.", - "oneOf": [ - { - "enum": [ - "Import" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageKey": { - "description": "The storage key to use. If storage key type is SharedAccessKey, it must be preceded with a \"?.\"", - "type": "string" - }, - "storageKeyType": { - "description": "The type of the storage key to use.", - "oneOf": [ - { - "enum": [ - "StorageAccessKey", - "SharedAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "The storage uri to use.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri", - "administratorLogin", - "administratorLoginPassword" - ], - "type": "object" - }, - "ServerAdministratorProperties": { - "description": "The properties of an server Administrator.", - "properties": { - "administratorType": { - "description": "The type of administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "The server administrator login value.", - "type": "string" - }, - "sid": { - "description": "The server administrator Sid (Secure ID).", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "The server Active Directory Administrator tenant id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid", - "tenantId" - ], - "type": "object" - }, - "ServerCommunicationLinkProperties": { - "description": "The properties of a server communication link.", - "properties": { - "partnerServer": { - "description": "The name of the partner server.", - "type": "string" - } - }, - "required": [ - "partnerServer" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server secure connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Proxy", - "Redirect" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "Represents the properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Can only be specified when the server is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "version": { - "description": "The version of the server.", - "oneOf": [ - { - "enum": [ - "2.0", - "12.0" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerTableAuditingPolicyProperties": { - "description": "Properties of a server table auditing policy.", - "properties": { - "auditLogsTableName": { - "description": "The audit logs table name.", - "type": "string" - }, - "auditingState": { - "description": "The state of the policy.", - "type": "string" - }, - "eventTypesToAudit": { - "description": "Comma-separated list of event types to audit.", - "type": "string" - }, - "fullAuditLogsTableName": { - "description": "The full audit logs table name.", - "type": "string" - }, - "retentionDays": { - "description": "The number of days to keep in the audit logs.", - "type": "string" - }, - "storageAccountKey": { - "description": "The key of the auditing storage account.", - "type": "string" - }, - "storageAccountName": { - "description": "The table storage account name", - "type": "string" - }, - "storageAccountResourceGroupName": { - "description": "The table storage account resource group name", - "type": "string" - }, - "storageAccountSecondaryKey": { - "description": "The secondary key of the auditing storage account.", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "The table storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageTableEndpoint": { - "description": "The storage table endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Represents the properties of a database transparent data encryption.", - "properties": { - "status": { - "description": "The status of the database transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "activeDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ServerAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advisors_childResource": { - "description": "Microsoft.Sql/servers/advisors", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Server Advisor.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvisorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advisors" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingPolicies_childResource": { - "description": "Microsoft.Sql/servers/auditingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the table auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTableAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_communicationLinks_childResource": { - "description": "Microsoft.Sql/servers/communicationLinks", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server communication link.", - "type": "string" - }, - "properties": { - "description": "The properties of resource.", - "oneOf": [ - { - "$ref": "#/definitions/ServerCommunicationLinkProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "communicationLinks" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the server secure connection policy.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advisors_childResource": { - "description": "Microsoft.Sql/servers/databases/advisors", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Database Advisor.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvisorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advisors" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the table auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseTableAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "The properties representing the resource.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the data masking policy.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "The properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the operation to perform", - "oneOf": [ - { - "enum": [ - "import" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Represents the properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ImportExtensionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "The properties of the geo backup policy.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "The geo-location where the resource lives", - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Properties of the security alert policy.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Represents the properties of the resource.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_disasterRecoveryConfiguration_childResource": { - "description": "Microsoft.Sql/servers/disasterRecoveryConfiguration", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the disaster recovery configuration to be created/updated.", - "type": "string" - }, - "type": { - "enum": [ - "disasterRecoveryConfiguration" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "The properties representing the resource.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2014-04-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "The properties representing the resource.", - "oneOf": [ - { - "$ref": "#/definitions/FirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2015-05-01-preview/Microsoft.Sql.json b/schemas/2015-05-01-preview/Microsoft.Sql.json deleted file mode 100644 index 087ec82279..0000000000 --- a/schemas/2015-05-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,1623 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "kind": { - "description": "Kind of encryption protector. This is metadata used for the Azure portal experience.", - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/01234567890123456789012345678901, then the server key name should be formatted as: YourVaultName_YourKeyName_01234567890123456789012345678901", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'state' as 'Enabled' and 'isAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "creationDate": { - "description": "The server key creation date.", - "format": "date-time", - "type": "string" - }, - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "thumbprint": { - "description": "Thumbprint of the server key.", - "type": "string" - }, - "uri": { - "description": "The URI of the server key.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "kind": { - "description": "Kind of encryption protector. This is metadata used for the Azure portal experience.", - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/01234567890123456789012345678901, then the server key name should be formatted as: YourVaultName_YourKeyName_01234567890123456789012345678901", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2015-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2017-03-01-preview/Microsoft.Sql.json b/schemas/2017-03-01-preview/Microsoft.Sql.json deleted file mode 100644 index b14889bb5c..0000000000 --- a/schemas/2017-03-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,3021 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server DNS alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'state' as 'Enabled' and 'isAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "OnlineSecondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has read and write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'state' as 'Enabled' and 'isAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'state' as 'Enabled' and 'isAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the schedule type is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore.", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'state' as 'Enabled' and 'isAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2017-03-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2017-10-01-preview/Microsoft.Sql.json b/schemas/2017-10-01-preview/Microsoft.Sql.json deleted file mode 100644 index ed4966f344..0000000000 --- a/schemas/2017-10-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,1108 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readReplicaCount": { - "description": "The number of readonly secondary replicas associated with the database to which readonly application intent connections may be routed. This property is only settable for Hyperscale edition databases.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica. This property is only settable for Premium and Business Critical databases.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has read and write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2017-10-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2018-06-01-preview/Microsoft.Sql.json b/schemas/2018-06-01-preview/Microsoft.Sql.json deleted file mode 100644 index 8018bc8a32..0000000000 --- a/schemas/2018-06-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,1382 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore.", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has read and write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has read and write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2018-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2019-06-01-preview/Microsoft.Sql.json b/schemas/2019-06-01-preview/Microsoft.Sql.json deleted file mode 100644 index c9a3cefb0c..0000000000 --- a/schemas/2019-06-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,1472 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readReplicaCount": { - "description": "The number of readonly secondary replicas associated with the database.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of an existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nThis property allows to restore across subscriptions which is only supported for DataWarehouse edition.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2019-06-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2020-02-02-preview/Microsoft.Sql.json b/schemas/2020-02-02-preview/Microsoft.Sql.json deleted file mode 100644 index e2acd18902..0000000000 --- a/schemas/2020-02-02-preview/Microsoft.Sql.json +++ /dev/null @@ -1,8349 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readReplicaCount": { - "description": "The number of readonly secondary replicas associated with the database.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this instance. The options are LRS (LocallyRedundantStorage), ZRS (ZoneRedundantStorage) and GRS (GeoRedundantStorage)", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-02-02-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2020-08-01-preview/Microsoft.Sql.json b/schemas/2020-08-01-preview/Microsoft.Sql.json deleted file mode 100644 index 40eb4a1f81..0000000000 --- a/schemas/2020-08-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,8524 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after successful export.", - "properties": { - "operationMode": { - "description": "Operation Mode.", - "oneOf": [ - { - "enum": [ - "PolybaseImport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageKey": { - "description": "Storage key.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this instance. The options are LRS (LocallyRedundantStorage), ZRS (ZoneRedundantStorage) and GRS (GeoRedundantStorage)", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2020-11-01-preview/Microsoft.Sql.json b/schemas/2020-11-01-preview/Microsoft.Sql.json deleted file mode 100644 index c025a1dd48..0000000000 --- a/schemas/2020-11-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,8725 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after successful export.", - "properties": { - "operationMode": { - "description": "Operation Mode.", - "oneOf": [ - { - "enum": [ - "PolybaseImport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageKey": { - "description": "Storage key.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this instance. The options are LRS (LocallyRedundantStorage), ZRS (ZoneRedundantStorage) and GRS (GeoRedundantStorage)", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2020-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2021-02-01-preview/Microsoft.Sql.json b/schemas/2021-02-01-preview/Microsoft.Sql.json deleted file mode 100644 index e6727d3389..0000000000 --- a/schemas/2021-02-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,8984 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/OutboundFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after successful export.", - "properties": { - "operationMode": { - "description": "Operation Mode.", - "oneOf": [ - { - "enum": [ - "PolybaseImport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageKey": { - "description": "Storage key.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageAccountType": { - "description": "The storage account type used to store backups for this instance. The options are LRS (LocallyRedundantStorage), ZRS (ZoneRedundantStorage) and GRS (GeoRedundantStorage)", - "oneOf": [ - { - "enum": [ - "GRS", - "LRS", - "ZRS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "OutboundFirewallRuleProperties": { - "description": "The properties of an outbound firewall rule.", - "properties": {}, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required.", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required.", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/OutboundFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2021-05-01-preview/Microsoft.Sql.json b/schemas/2021-05-01-preview/Microsoft.Sql.json deleted file mode 100644 index a43f210be3..0000000000 --- a/schemas/2021-05-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,9452 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of an existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nThis property allows to restore across subscriptions which is only supported for DataWarehouse edition.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the blob auditing policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2021-08-01-preview/Microsoft.Sql.json b/schemas/2021-08-01-preview/Microsoft.Sql.json deleted file mode 100644 index 0d33c0b6ca..0000000000 --- a/schemas/2021-08-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,9550 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of an existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nThis property allows to restore across subscriptions which is only supported for DataWarehouse edition.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2021-11-01-preview/Microsoft.Sql.json b/schemas/2021-11-01-preview/Microsoft.Sql.json deleted file mode 100644 index 21e0be479e..0000000000 --- a/schemas/2021-11-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,9907 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen4, GP_Gen5, BC_Gen4, BC_Gen5", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 8192. Increments of 32 GB allowed only.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2021-11-01/Microsoft.Sql.json b/schemas/2021-11-01/Microsoft.Sql.json deleted file mode 100644 index 880f962285..0000000000 --- a/schemas/2021-11-01/Microsoft.Sql.json +++ /dev/null @@ -1,10438 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo and Named.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentPropertiesAutoGenerated": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyPropertiesAutoGenerated": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the devops audit settings. This should always be 'default'.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2021-11-01" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2022-02-01-preview/Microsoft.Sql.json b/schemas/2022-02-01-preview/Microsoft.Sql.json deleted file mode 100644 index bb9cd63762..0000000000 --- a/schemas/2022-02-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,11105 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2022-05-01-preview/Microsoft.Sql.json b/schemas/2022-05-01-preview/Microsoft.Sql.json deleted file mode 100644 index c350336b0d..0000000000 --- a/schemas/2022-05-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,11169 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the database i.e. Default or VBS enclaves.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Type of the geo-secondary instance. Set 'Standby' if the instance is used as a DR option only.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "crossSubscriptionRestorableDroppedDatabaseId": { - "description": "The restorable cross-subscription dropped database resource id to restore when creating this database.", - "type": "string" - }, - "crossSubscriptionSourceDatabaseId": { - "description": "The resource identifier of the cross-subscription source database associated with create operation of this database.", - "type": "string" - }, - "crossSubscriptionTargetManagedInstanceId": { - "description": "Target managed instance id used in cross-subscription restore.", - "type": "string" - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsDefaultTimeout": { - "description": "Default timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsMaximumTimeout": { - "description": "Maximum timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the instance. This can only be used at instance create time. If used for instance update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server. This can only be used at server create time. If used for server update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2022-08-01-preview/Microsoft.Sql.json b/schemas/2022-08-01-preview/Microsoft.Sql.json deleted file mode 100644 index 5f412ee56b..0000000000 --- a/schemas/2022-08-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,11805 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_startStopSchedules_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverConfigurationOptions_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "pattern": "^.*/allowPolybaseExport$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseKey": { - "description": "Database level key used for encryption at rest.", - "properties": {}, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the database is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "encryptionProtector": { - "description": "The azure key vault URI of the database if it's configured with per Database Customer Managed Keys.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keys": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseKey" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "manualCutover": { - "description": "Whether or not customer controlled manual cutover needs to be done during Update Database operation to Hyperscale tier.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier.\r\n\r\nWhen manualCutover is specified, the scaling operation will wait for user input to trigger cutover to Hyperscale database.\r\n\r\nTo trigger cutover, please provide 'performCutover' parameter when the Scaling operation is in Waiting state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "performCutover": { - "description": "To trigger customer controlled manual cutover during the wait state while Scaling operation is in progress.\r\n\r\nThis property parameter is only applicable for scaling operations that are initiated along with 'manualCutover' parameter.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier is already in progress.\r\n\r\nWhen performCutover is specified, the scaling operation will trigger cutover and perform role-change to Hyperscale database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the database i.e. Default or VBS enclaves.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentPropertiesAutoGenerated": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "availabilityZone": { - "description": "Specifies the availability zone the pool's primary replica is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the elastic pool.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Type of the geo-secondary instance. Set 'Standby' if the instance is used as a DR option only.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "crossSubscriptionRestorableDroppedDatabaseId": { - "description": "The restorable cross-subscription dropped database resource id to restore when creating this database.", - "type": "string" - }, - "crossSubscriptionSourceDatabaseId": { - "description": "The resource identifier of the cross-subscription source database associated with create operation of this database.", - "type": "string" - }, - "crossSubscriptionTargetManagedInstanceId": { - "description": "Target managed instance id used in cross-subscription restore.", - "type": "string" - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsDefaultTimeout": { - "description": "Default timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsMaximumTimeout": { - "description": "Maximum timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the instance. This can only be used at instance create time. If used for instance update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedLedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ScheduleItem": { - "description": "Schedule info describing when the server should be started or stopped.", - "properties": { - "startDay": { - "description": "Start day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "startTime": { - "description": "Start time.", - "type": "string" - }, - "stopDay": { - "description": "Stop day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stopTime": { - "description": "Stop time.", - "type": "string" - } - }, - "required": [ - "startDay", - "startTime", - "stopDay", - "stopTime" - ], - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyPropertiesAutoGenerated": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConfigurationOptionProperties": { - "description": "The properties of server configuration option.", - "properties": { - "serverConfigurationOptionValue": { - "description": "Value of the server configuration option.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverConfigurationOptionValue" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server. This can only be used at server create time. If used for server update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled' or 'SecuredByPerimeter'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled", - "SecuredByPerimeter" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "StartStopManagedInstanceScheduleProperties": { - "description": "Properties of managed instance's Start/Stop schedule.", - "properties": { - "description": { - "description": "The description of the schedule.", - "type": "string" - }, - "scheduleList": { - "description": "Schedule list.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ScheduleItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeZoneId": { - "description": "The time zone of the schedule.", - "type": "string" - } - }, - "required": [ - "scheduleList" - ], - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyPropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions_childResource": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "enum": [ - "allowPolybaseExport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules_childResource": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2022-11-01-preview/Microsoft.Sql.json b/schemas/2022-11-01-preview/Microsoft.Sql.json deleted file mode 100644 index 044a55be8d..0000000000 --- a/schemas/2022-11-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,11717 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_startStopSchedules_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverConfigurationOptions_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselinePropertiesAutoGenerated" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "pattern": "^.*/allowPolybaseExport$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseKey": { - "description": "Database level key used for encryption at rest.", - "properties": {}, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the database is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "encryptionProtector": { - "description": "The azure key vault URI of the database if it's configured with per Database Customer Managed Keys.", - "type": "string" - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keys": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseKey" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "manualCutover": { - "description": "Whether or not customer controlled manual cutover needs to be done during Update Database operation to Hyperscale tier.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier.\r\n\r\nWhen manualCutover is specified, the scaling operation will wait for user input to trigger cutover to Hyperscale database.\r\n\r\nTo trigger cutover, please provide 'performCutover' parameter when the Scaling operation is in Waiting state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "performCutover": { - "description": "To trigger customer controlled manual cutover during the wait state while Scaling operation is in progress.\r\n\r\nThis property parameter is only applicable for scaling operations that are initiated along with 'manualCutover' parameter.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier is already in progress.\r\n\r\nWhen performCutover is specified, the scaling operation will trigger cutover and perform role-change to Hyperscale database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the database i.e. Default or VBS enclaves.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselinePropertiesAutoGenerated": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "availabilityZone": { - "description": "Specifies the availability zone the pool's primary replica is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the elastic pool.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpv6Address.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Type of the geo-secondary instance. Set 'Standby' if the instance is used as a DR option only.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "crossSubscriptionRestorableDroppedDatabaseId": { - "description": "The restorable cross-subscription dropped database resource id to restore when creating this database.", - "type": "string" - }, - "crossSubscriptionSourceDatabaseId": { - "description": "The resource identifier of the cross-subscription source database associated with create operation of this database.", - "type": "string" - }, - "crossSubscriptionTargetManagedInstanceId": { - "description": "Target managed instance id used in cross-subscription restore.", - "type": "string" - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsDefaultTimeout": { - "description": "Default timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsMaximumTimeout": { - "description": "Maximum timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the instance. This can only be used at instance create time. If used for instance update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedLedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ScheduleItem": { - "description": "Schedule info describing when the server should be started or stopped.", - "properties": { - "startDay": { - "description": "Start day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "startTime": { - "description": "Start time.", - "type": "string" - }, - "stopDay": { - "description": "Stop day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stopTime": { - "description": "Stop time.", - "type": "string" - } - }, - "required": [ - "startDay", - "startTime", - "stopDay", - "stopTime" - ], - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConfigurationOptionProperties": { - "description": "The properties of server configuration option.", - "properties": { - "serverConfigurationOptionValue": { - "description": "Value of the server configuration option.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverConfigurationOptionValue" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server. This can only be used at server create time. If used for server update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled' or 'SecuredByPerimeter'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled", - "SecuredByPerimeter" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "StartStopManagedInstanceScheduleProperties": { - "description": "Properties of managed instance's Start/Stop schedule.", - "properties": { - "description": { - "description": "The description of the schedule.", - "type": "string" - }, - "scheduleList": { - "description": "Schedule list.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ScheduleItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeZoneId": { - "description": "The time zone of the schedule.", - "type": "string" - } - }, - "required": [ - "scheduleList" - ], - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions_childResource": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "enum": [ - "allowPolybaseExport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules_childResource": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2022-11-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2023-02-01-preview/Microsoft.Sql.json b/schemas/2023-02-01-preview/Microsoft.Sql.json deleted file mode 100644 index 98abac6795..0000000000 --- a/schemas/2023-02-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,11869 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_startStopSchedules_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverConfigurationOptions_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/CreateOrUpdateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "pattern": "^.*/allowPolybaseExport$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup.", - "type": "string" - } - }, - "type": "object" - }, - "CreateOrUpdateProperties": { - "description": "Properties for creating and updating distributed availability group", - "properties": { - "primaryAvailabilityGroupName": { - "description": "The primary availability group name", - "type": "string" - }, - "replicationMode": { - "description": "The replication mode of a distributed availability group. Parameter will be ignored during link creation.", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryAvailabilityGroupName": { - "description": "The secondary availability group name", - "type": "string" - }, - "sourceEndpoint": { - "description": "The source endpoint", - "type": "string" - }, - "targetDatabase": { - "description": "The name of the target database", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseKey": { - "description": "Database level key used for encryption at rest.", - "properties": {}, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the database is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "encryptionProtector": { - "description": "The azure key vault URI of the database if it's configured with per Database Customer Managed Keys.", - "type": "string" - }, - "encryptionProtectorAutoRotation": { - "description": "The flag to enable or disable auto rotation of database encryption protector AKV key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "freeLimitExhaustionBehavior": { - "description": "Specifies the behavior when monthly free limits are exhausted for the free database.\r\n\r\nAutoPause: The database will be auto paused upon exhaustion of free limits for remainder of the month.\r\n\r\nBillForUsage: The database will continue to be online upon exhaustion of free limits and any overage will be billed.", - "oneOf": [ - { - "enum": [ - "AutoPause", - "BillOverUsage" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keys": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseKey" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "manualCutover": { - "description": "Whether or not customer controlled manual cutover needs to be done during Update Database operation to Hyperscale tier.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier.\r\n\r\nWhen manualCutover is specified, the scaling operation will wait for user input to trigger cutover to Hyperscale database.\r\n\r\nTo trigger cutover, please provide 'performCutover' parameter when the Scaling operation is in Waiting state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "performCutover": { - "description": "To trigger customer controlled manual cutover during the wait state while Scaling operation is in progress.\r\n\r\nThis property parameter is only applicable for scaling operations that are initiated along with 'manualCutover' parameter.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier is already in progress.\r\n\r\nWhen performCutover is specified, the scaling operation will trigger cutover and perform role-change to Hyperscale database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the database i.e. Default or VBS enclaves.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "useFreeLimit": { - "description": "Whether or not the database uses free monthly limits. Allowed on one database in a subscription.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "availabilityZone": { - "description": "Specifies the availability zone the pool's primary replica is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the elastic pool.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetServer": { - "description": "The target partner server where the read-only endpoint points to.", - "type": "string" - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Type of the geo-secondary instance. Set 'Standby' if the instance is used as a DR option only.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName", - "credential" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "credential", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "LongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "makeBackupsImmutable": { - "description": "The setting whether to make LTR backups immutable", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "crossSubscriptionRestorableDroppedDatabaseId": { - "description": "The restorable cross-subscription dropped database resource id to restore when creating this database.", - "type": "string" - }, - "crossSubscriptionSourceDatabaseId": { - "description": "The resource identifier of the cross-subscription source database associated with create operation of this database.", - "type": "string" - }, - "crossSubscriptionTargetManagedInstanceId": { - "description": "Target managed instance id used in cross-subscription restore.", - "type": "string" - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsDefaultTimeout": { - "description": "Default timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsMaximumTimeout": { - "description": "Maximum timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the instance. This can only be used at instance create time. If used for instance update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "hybridSecondaryUsage": { - "description": "Hybrid secondary usage. Possible values are 'Active' (default value) and 'Passive' (customer uses the secondary as Passive DR).", - "oneOf": [ - { - "enum": [ - "Active", - "Passive" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "isGeneralPurposeV2": { - "description": "Whether or not this is a GPv2 variant of General Purpose edition.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "pricingModel": { - "description": "Weather or not Managed Instance is freemium.", - "oneOf": [ - { - "enum": [ - "Regular", - "Freemium" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageIOps": { - "description": "Storage IOps. Minimum value: 300. Maximum value: 80000. Increments of 1 IOps allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageThroughputMBps": { - "description": "Storage throughput MBps parameter is not supported in the instance create/update operation.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedLedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ScheduleItem": { - "description": "Schedule info describing when the server should be started or stopped.", - "properties": { - "startDay": { - "description": "Start day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "startTime": { - "description": "Start time.", - "type": "string" - }, - "stopDay": { - "description": "Stop day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stopTime": { - "description": "Stop time.", - "type": "string" - } - }, - "required": [ - "startDay", - "startTime", - "stopDay", - "stopTime" - ], - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "clientClassificationSource": { - "oneOf": [ - { - "enum": [ - "None", - "Native", - "Recommended", - "MIP" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConfigurationOptionProperties": { - "description": "The properties of server configuration option.", - "properties": { - "serverConfigurationOptionValue": { - "description": "Value of the server configuration option.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverConfigurationOptionValue" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server. This can only be used at server create time. If used for server update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isIPv6Enabled": { - "description": "Whether or not to enable IPv6 support for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled' or 'SecuredByPerimeter'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled", - "SecuredByPerimeter" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "StartStopManagedInstanceScheduleProperties": { - "description": "Properties of managed instance's Start/Stop schedule.", - "properties": { - "description": { - "description": "The description of the schedule.", - "type": "string" - }, - "scheduleList": { - "description": "Schedule list.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ScheduleItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeZoneId": { - "description": "The time zone of the schedule.", - "type": "string" - } - }, - "required": [ - "scheduleList" - ], - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/CreateOrUpdateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions_childResource": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "enum": [ - "allowPolybaseExport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules_childResource": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-02-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2023-05-01-preview/Microsoft.Sql.json b/schemas/2023-05-01-preview/Microsoft.Sql.json deleted file mode 100644 index 9176f33b23..0000000000 --- a/schemas/2023-05-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,12325 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_startStopSchedules_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverConfigurationOptions_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "pattern": "^.*/allowPolybaseExport$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_replicationLinks_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_replicationLinks": { - "description": "Microsoft.Sql/servers/databases/replicationLinks", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ReplicationLinkProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/replicationLinks" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The identity of the job agent.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_privateEndpoints_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_privateEndpoints": { - "description": "Microsoft.Sql/servers/jobAgents/privateEndpoints", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the private endpoint.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobPrivateEndpointProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/privateEndpoints" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseKey": { - "description": "Database level key used for encryption at rest.", - "properties": {}, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the database is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "encryptionProtector": { - "description": "The azure key vault URI of the database if it's configured with per Database Customer Managed Keys.", - "type": "string" - }, - "encryptionProtectorAutoRotation": { - "description": "The flag to enable or disable auto rotation of database encryption protector AKV key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "freeLimitExhaustionBehavior": { - "description": "Specifies the behavior when monthly free limits are exhausted for the free database.\r\n\r\nAutoPause: The database will be auto paused upon exhaustion of free limits for remainder of the month.\r\n\r\nBillForUsage: The database will continue to be online upon exhaustion of free limits and any overage will be billed.", - "oneOf": [ - { - "enum": [ - "AutoPause", - "BillOverUsage" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keys": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseKey" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "manualCutover": { - "description": "Whether or not customer controlled manual cutover needs to be done during Update Database operation to Hyperscale tier.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier.\r\n\r\nWhen manualCutover is specified, the scaling operation will wait for user input to trigger cutover to Hyperscale database.\r\n\r\nTo trigger cutover, please provide 'performCutover' parameter when the Scaling operation is in Waiting state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "performCutover": { - "description": "To trigger customer controlled manual cutover during the wait state while Scaling operation is in progress.\r\n\r\nThis property parameter is only applicable for scaling operations that are initiated along with 'manualCutover' parameter.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier is already in progress.\r\n\r\nWhen performCutover is specified, the scaling operation will trigger cutover and perform role-change to Hyperscale database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the database i.e. Default or VBS enclaves.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "useFreeLimit": { - "description": "Whether or not the database uses free monthly limits. Allowed on one database in a subscription.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupDatabase": { - "description": "Database specific information", - "properties": { - "databaseName": { - "description": "The name of the database in link", - "type": "string" - } - }, - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "databases": { - "description": "Databases in the distributed availability group", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DistributedAvailabilityGroupDatabase" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverMode": { - "description": "The link failover mode - can be Manual if intended to be used for two-way failover with a supported SQL Server, or None for one-way failover to Azure.", - "oneOf": [ - { - "enum": [ - "None", - "Manual" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "instanceAvailabilityGroupName": { - "description": "Managed instance side availability group name", - "type": "string" - }, - "instanceLinkRole": { - "description": "Managed instance side link role", - "oneOf": [ - { - "enum": [ - "Primary", - "Secondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerAvailabilityGroupName": { - "description": "SQL server side availability group name", - "type": "string" - }, - "partnerEndpoint": { - "description": "SQL server side endpoint - IP or DNS resolvable name", - "type": "string" - }, - "replicationMode": { - "description": "Replication mode of the link", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "seedingMode": { - "description": "Database seeding mode – can be Automatic (default), or Manual for supported scenarios.", - "oneOf": [ - { - "enum": [ - "Automatic", - "Manual" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "autoPauseDelay": { - "description": "Auto Pause Delay for per database within pool", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which elastic pool is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the pool's primary replica is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the elastic pool.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Databases secondary type on partner server.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetServer": { - "description": "The target partner server where the read-only endpoint points to.", - "type": "string" - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpAddress.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Type of the geo-secondary instance. Set 'Standby' if the instance is used as a DR option only.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "tenantId": { - "description": "The job agent identity tenant id", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "The job agent identity type", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssignedUserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/JobAgentUserAssignedIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobAgentUserAssignedIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobPrivateEndpointProperties": { - "description": "Properties of job agent private endpoint.", - "properties": { - "targetServerAzureResourceId": { - "description": "ARM resource id of the server the private endpoint will target.", - "type": "string" - } - }, - "required": [ - "targetServerAzureResourceId" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "LongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "backupStorageAccessTier": { - "description": "The BackupStorageAccessTier for the LTR backups", - "oneOf": [ - { - "enum": [ - "Hot", - "Archive" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "makeBackupsImmutable": { - "description": "The setting whether to make LTR backups immutable", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "crossSubscriptionRestorableDroppedDatabaseId": { - "description": "The restorable cross-subscription dropped database resource id to restore when creating this database.", - "type": "string" - }, - "crossSubscriptionSourceDatabaseId": { - "description": "The resource identifier of the cross-subscription source database associated with create operation of this database.", - "type": "string" - }, - "crossSubscriptionTargetManagedInstanceId": { - "description": "Target managed instance id used in cross-subscription restore.", - "type": "string" - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsDefaultTimeout": { - "description": "Default timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsMaximumTimeout": { - "description": "Maximum timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "backupStorageAccessTier": { - "description": "The BackupStorageAccessTier for the LTR backups", - "oneOf": [ - { - "enum": [ - "Hot", - "Archive" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the instance. This can only be used at instance create time. If used for instance update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authenticationMetadata": { - "description": "The managed instance's authentication metadata lookup mode.", - "oneOf": [ - { - "enum": [ - "AzureAD", - "Paired", - "Windows" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "databaseFormat": { - "description": "Specifies the internal format of instance databases specific to the SQL engine version.", - "oneOf": [ - { - "enum": [ - "AlwaysUpToDate", - "SQLServer2022" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "hybridSecondaryUsage": { - "description": "Hybrid secondary usage. Possible values are 'Active' (default value) and 'Passive' (customer uses the secondary as Passive DR).", - "oneOf": [ - { - "enum": [ - "Active", - "Passive" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "isGeneralPurposeV2": { - "description": "Whether or not this is a GPv2 variant of General Purpose edition.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "pricingModel": { - "description": "Weather or not Managed Instance is freemium.", - "oneOf": [ - { - "enum": [ - "Regular", - "Freemium" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageIOps": { - "description": "Storage IOps. Minimum value: 300. Maximum value: 80000. Increments of 1 IOps allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageThroughputMBps": { - "description": "Storage throughput MBps parameter is not supported in the instance create/update operation.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedLedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ReplicationLinkProperties": { - "description": "Properties of a replication link.", - "properties": { - "linkType": { - "description": "Link type (GEO, NAMED, STANDBY). Update operation does not support NAMED.", - "oneOf": [ - { - "enum": [ - "GEO", - "NAMED", - "STANDBY" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ScheduleItem": { - "description": "Schedule info describing when the server should be started or stopped.", - "properties": { - "startDay": { - "description": "Start day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "startTime": { - "description": "Start time.", - "type": "string" - }, - "stopDay": { - "description": "Stop day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stopTime": { - "description": "Stop time.", - "type": "string" - } - }, - "required": [ - "startDay", - "startTime", - "stopDay", - "stopTime" - ], - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "clientClassificationSource": { - "oneOf": [ - { - "enum": [ - "None", - "Native", - "Recommended", - "MIP" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConfigurationOptionProperties": { - "description": "The properties of server configuration option.", - "properties": { - "serverConfigurationOptionValue": { - "description": "Value of the server configuration option.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverConfigurationOptionValue" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server. This can only be used at server create time. If used for server update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isIPv6Enabled": { - "description": "Whether or not to enable IPv6 support for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', 1.0', '1.1', '1.2', '1.3'", - "oneOf": [ - { - "enum": [ - "None", - "1.0", - "1.1", - "1.2", - "1.3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled' or 'SecuredByPerimeter'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled", - "SecuredByPerimeter" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "StartStopManagedInstanceScheduleProperties": { - "description": "Properties of managed instance's Start/Stop schedule.", - "properties": { - "description": { - "description": "The description of the schedule.", - "type": "string" - }, - "scheduleList": { - "description": "Schedule list.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ScheduleItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeZoneId": { - "description": "The time zone of the schedule.", - "type": "string" - } - }, - "required": [ - "scheduleList" - ], - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions_childResource": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "enum": [ - "allowPolybaseExport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules_childResource": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_replicationLinks_childResource": { - "description": "Microsoft.Sql/servers/databases/replicationLinks", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ReplicationLinkProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "replicationLinks" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The identity of the job agent.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_privateEndpoints_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/privateEndpoints", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the private endpoint.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobPrivateEndpointProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpoints" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-05-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/2023-08-01-preview/Microsoft.Sql.json b/schemas/2023-08-01-preview/Microsoft.Sql.json deleted file mode 100644 index 1166f0645d..0000000000 --- a/schemas/2023-08-01-preview/Microsoft.Sql.json +++ /dev/null @@ -1,12310 +0,0 @@ -{ - "id": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#", - "title": "Microsoft.Sql", - "description": "Microsoft Sql Resource Types", - "$schema": "http://json-schema.org/draft-04/schema#", - "resourceDefinitions": { - "instancePools": { - "description": "Microsoft.Sql/instancePools", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the instance pool to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstancePoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/instancePools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_instanceFailoverGroups": { - "description": "Microsoft.Sql/locations/instanceFailoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/instanceFailoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "locations_serverTrustGroups": { - "description": "Microsoft.Sql/locations/serverTrustGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server trust group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/locations/serverTrustGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances": { - "description": "Microsoft.Sql/managedInstances", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the managed instance.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the managed instance.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_dtc_childResource" - }, - { - "$ref": "#/definitions/managedInstances_keys_childResource" - }, - { - "$ref": "#/definitions/managedInstances_sqlAgent_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/managedInstances_administrators_childResource" - }, - { - "$ref": "#/definitions/managedInstances_startStopSchedules_childResource" - }, - { - "$ref": "#/definitions/managedInstances_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/managedInstances_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverTrustCertificates_childResource" - }, - { - "$ref": "#/definitions/managedInstances_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/managedInstances_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/managedInstances_serverConfigurationOptions_childResource" - }, - { - "$ref": "#/definitions/managedInstances_distributedAvailabilityGroups_childResource" - }, - { - "$ref": "#/definitions/managedInstances_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "Managed instance SKU. Allowed values for sku.name: GP_Gen5, GP_G8IM, GP_G8IH, BC_Gen5, BC_G8IM, BC_G8IH", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_administrators": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/managedInstances_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/managedInstances_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/restorableDroppedDatabases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "pattern": "^.*/allowPolybaseExport$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/managedInstances/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers": { - "description": "Microsoft.Sql/servers", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the server.", - "oneOf": [ - { - "$ref": "#/definitions/ResourceIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the server.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_keys_childResource" - }, - { - "$ref": "#/definitions/servers_databases_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_childResource" - }, - { - "$ref": "#/definitions/servers_dnsAliases_childResource" - }, - { - "$ref": "#/definitions/servers_syncAgents_childResource" - }, - { - "$ref": "#/definitions/servers_elasticPools_childResource" - }, - { - "$ref": "#/definitions/servers_firewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_failoverGroups_childResource" - }, - { - "$ref": "#/definitions/servers_administrators_childResource" - }, - { - "$ref": "#/definitions/servers_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_ipv6FirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_connectionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_encryptionProtector_childResource" - }, - { - "$ref": "#/definitions/servers_virtualNetworkRules_childResource" - }, - { - "$ref": "#/definitions/servers_outboundFirewallRules_childResource" - }, - { - "$ref": "#/definitions/servers_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_devOpsAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_privateEndpointConnections_childResource" - }, - { - "$ref": "#/definitions/servers_azureADOnlyAuthentications_childResource" - }, - { - "$ref": "#/definitions/servers_sqlVulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "pattern": "^.*/ActiveDirectory$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_extensions_childResource" - }, - { - "$ref": "#/definitions/servers_databases_syncGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_workloadGroups_childResource" - }, - { - "$ref": "#/definitions/servers_databases_auditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_replicationLinks_childResource" - }, - { - "$ref": "#/definitions/servers_databases_geoBackupPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_ledgerDigestUploads_childResource" - }, - { - "$ref": "#/definitions/servers_databases_securityAlertPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_extendedAuditingSettings_childResource" - }, - { - "$ref": "#/definitions/servers_databases_vulnerabilityAssessments_childResource" - }, - { - "$ref": "#/definitions/servers_databases_transparentDataEncryption_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupLongTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_backupShortTermRetentionPolicies_childResource" - }, - { - "$ref": "#/definitions/servers_databases_advancedThreatProtectionSettings_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_dataMaskingPolicies_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_replicationLinks": { - "description": "Microsoft.Sql/servers/databases/replicationLinks", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ReplicationLinkProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/replicationLinks" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_schemas_tables_columns_sensitivityLabels": { - "description": "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SensitivityLabelProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/schemas/tables/columns/sensitivityLabels" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_syncGroups_syncMembers_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/syncGroups/syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_rules_baselines": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment rule baseline (default implies a baseline on a database level rule and master for server level rule).", - "oneOf": [ - { - "enum": [ - "master", - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/vulnerabilityAssessments/rules/baselines" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_databases_workloadGroups_workloadClassifiers_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "pattern": "^.*/current$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The identity of the job agent.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_credentials_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_targetGroups_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_privateEndpoints_childResource" - } - ] - }, - "type": "array" - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "resources": { - "items": { - "oneOf": [ - { - "$ref": "#/definitions/servers_jobAgents_jobs_steps_childResource" - }, - { - "$ref": "#/definitions/servers_jobAgents_jobs_executions_childResource" - } - ] - }, - "type": "array" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/jobs/steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_privateEndpoints": { - "description": "Microsoft.Sql/servers/jobAgents/privateEndpoints", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the private endpoint.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobPrivateEndpointProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/privateEndpoints" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/jobAgents/targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "pattern": "^.*/Default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "pattern": "^.*/default$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "Microsoft.Sql/servers/vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - }, - "definitions": { - "AdministratorProperties": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "AdvancedThreatProtectionProperties": { - "description": "Properties of an Advanced Threat Protection state.", - "properties": { - "state": { - "description": "Specifies the state of the Advanced Threat Protection, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "AzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "BackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "diffBackupIntervalInHours": { - "description": "The differential backup interval in hours. This is how many interval hours between each differential backup will be supported. This is only applicable to live databases but not dropped databases.", - "oneOf": [ - { - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "BaseLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "DataMaskingPolicyProperties": { - "description": "The properties of a database data masking policy.", - "properties": { - "dataMaskingState": { - "description": "The state of the data masking policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "exemptPrincipals": { - "description": "The list of the exempt principals. Specifies the semicolon-separated list of database users for which the data masking policy does not apply. The specified users receive data results without masking for all of the database queries.", - "type": "string" - } - }, - "required": [ - "dataMaskingState" - ], - "type": "object" - }, - "DataMaskingRuleProperties": { - "description": "The properties of a database data masking rule.", - "properties": { - "aliasName": { - "description": "The alias name. This is a legacy parameter and is no longer used.", - "type": "string" - }, - "columnName": { - "description": "The column name on which the data masking rule is applied.", - "type": "string" - }, - "maskingFunction": { - "description": "The masking function that is used for the data masking rule.", - "oneOf": [ - { - "enum": [ - "Default", - "CCN", - "Email", - "Number", - "SSN", - "Text" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "numberFrom": { - "description": "The numberFrom property of the masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "numberTo": { - "description": "The numberTo property of the data masking rule. Required if maskingFunction is set to Number, otherwise this parameter will be ignored.", - "type": "string" - }, - "prefixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked in the beginning of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "replacementString": { - "description": "If maskingFunction is set to Text, the character to use for masking the unexposed part of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "ruleState": { - "description": "The rule state. Used to delete a rule. To delete an existing rule, specify the schemaName, tableName, columnName, maskingFunction, and specify ruleState as disabled. However, if the rule doesn't already exist, the rule will be created with ruleState set to enabled, regardless of the provided value of ruleState.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schemaName": { - "description": "The schema name on which the data masking rule is applied.", - "type": "string" - }, - "suffixSize": { - "description": "If maskingFunction is set to Text, the number of characters to show unmasked at the end of the string. Otherwise, this parameter will be ignored.", - "type": "string" - }, - "tableName": { - "description": "The table name on which the data masking rule is applied.", - "type": "string" - } - }, - "required": [ - "schemaName", - "tableName", - "columnName", - "maskingFunction" - ], - "type": "object" - }, - "DatabaseBlobAuditingPolicyProperties": { - "description": "Properties of a database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "DatabaseExtensionsProperties": { - "description": "Contains the database information after a successful Import, Export, or PolybaseImport", - "properties": { - "administratorLogin": { - "description": "Administrator login name.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "Administrator login password.", - "type": "string" - }, - "authenticationType": { - "description": "Authentication type: SQL authentication or AD password.", - "type": "string" - }, - "databaseEdition": { - "description": "Database edition for the newly created database in the case of an import operation.", - "type": "string" - }, - "maxSizeBytes": { - "description": "Database max size in bytes for the newly created database in the case of an import operation.", - "type": "string" - }, - "networkIsolation": { - "description": "Optional resource information to enable network isolation for request.", - "oneOf": [ - { - "$ref": "#/definitions/NetworkIsolationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "operationMode": { - "description": "Operation mode of the operation: Import, Export, or PolybaseImport.", - "oneOf": [ - { - "enum": [ - "PolybaseImport", - "Import", - "Export" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serviceObjectiveName": { - "description": "Database service level objective for the newly created database in the case of an import operation.", - "type": "string" - }, - "storageKey": { - "description": "Storage key for the storage account.", - "type": "string" - }, - "storageKeyType": { - "description": "Storage key type: StorageAccessKey or SharedAccessKey.", - "oneOf": [ - { - "enum": [ - "SharedAccessKey", - "StorageAccessKey" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageUri": { - "description": "Storage Uri for the storage account.", - "type": "string" - } - }, - "required": [ - "operationMode", - "storageKeyType", - "storageKey", - "storageUri" - ], - "type": "object" - }, - "DatabaseIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type", - "oneOf": [ - { - "enum": [ - "None", - "UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseUserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseKey": { - "description": "Database level key used for encryption at rest.", - "properties": {}, - "type": "object" - }, - "DatabaseProperties": { - "description": "The database's properties.", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which database is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the database is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "The collation of the database.", - "type": "string" - }, - "createMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: regular database creation.\r\n\r\nCopy: creates a database as a copy of an existing database. sourceDatabaseId must be specified as the resource ID of the source database.\r\n\r\nSecondary: creates a database as a secondary replica of an existing database. sourceDatabaseId must be specified as the resource ID of the existing primary database.\r\n\r\nPointInTimeRestore: Creates a database by restoring a point in time backup of an existing database. sourceDatabaseId must be specified as the resource ID of the existing database, and restorePointInTime must be specified.\r\n\r\nRecovery: Creates a database by restoring a geo-replicated backup. sourceDatabaseId must be specified as the recoverable database resource ID to restore.\r\n\r\nRestore: Creates a database by restoring a backup of a deleted database. sourceDatabaseId must be specified. If sourceDatabaseId is the database's original resource ID, then sourceDatabaseDeletionDate must be specified. Otherwise sourceDatabaseId must be the restorable dropped database resource ID and sourceDatabaseDeletionDate is ignored. restorePointInTime may also be specified to restore from an earlier point in time.\r\n\r\nRestoreLongTermRetentionBackup: Creates a database by restoring from a long term retention vault. recoveryServicesRecoveryPointResourceId must be specified as the recovery point resource ID.\r\n\r\nCopy, Secondary, and RestoreLongTermRetentionBackup are not supported for DataWarehouse edition.", - "oneOf": [ - { - "enum": [ - "Default", - "Copy", - "Secondary", - "PointInTimeRestore", - "Restore", - "Recovery", - "RestoreExternalBackup", - "RestoreExternalBackupSecondary", - "RestoreLongTermRetentionBackup", - "OnlineSecondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "elasticPoolId": { - "description": "The resource identifier of the elastic pool containing this database.", - "type": "string" - }, - "encryptionProtector": { - "description": "The azure key vault URI of the database if it's configured with per Database Customer Managed Keys.", - "type": "string" - }, - "encryptionProtectorAutoRotation": { - "description": "The flag to enable or disable auto rotation of database encryption protector AKV key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant per database CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "freeLimitExhaustionBehavior": { - "description": "Specifies the behavior when monthly free limits are exhausted for the free database.\r\n\r\nAutoPause: The database will be auto paused upon exhaustion of free limits for remainder of the month.\r\n\r\nBillForUsage: The database will continue to be online upon exhaustion of free limits and any overage will be billed.", - "oneOf": [ - { - "enum": [ - "AutoPause", - "BillOverUsage" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the Business Critical, Premium, or Hyperscale edition database that are used to provide high availability. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keys": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/DatabaseKey" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this database. `LicenseIncluded` if you need a license, or `BasePrice` if you have a license and are eligible for the Azure Hybrid Benefit.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "longTermRetentionBackupResourceId": { - "description": "The resource identifier of the long term retention backup associated with create operation of this database.", - "type": "string" - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the database. This configuration defines the period when the maintenance updates will occur.", - "type": "string" - }, - "manualCutover": { - "description": "Whether or not customer controlled manual cutover needs to be done during Update Database operation to Hyperscale tier.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier.\r\n\r\nWhen manualCutover is specified, the scaling operation will wait for user input to trigger cutover to Hyperscale database.\r\n\r\nTo trigger cutover, please provide 'performCutover' parameter when the Scaling operation is in Waiting state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxSizeBytes": { - "description": "The max size of the database expressed in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that database will always have allocated, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "performCutover": { - "description": "To trigger customer controlled manual cutover during the wait state while Scaling operation is in progress.\r\n\r\nThis property parameter is only applicable for scaling operations that are initiated along with 'manualCutover' parameter.\r\n\r\nThis property is only applicable when scaling database from Business Critical/General Purpose/Premium/Standard tier to Hyperscale tier is already in progress.\r\n\r\nWhen performCutover is specified, the scaling operation will trigger cutover and perform role-change to Hyperscale database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the database i.e. Default or VBS enclaves.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readScale": { - "description": "The state of read-only routing. If enabled, connections that have application intent set to readonly in their connection string may be routed to a readonly secondary replica in the same region. Not applicable to a Hyperscale database within an elastic pool.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "recoveryServicesRecoveryPointId": { - "description": "The resource identifier of the recovery point associated with create operation of this database.", - "type": "string" - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this database.", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorableDroppedDatabaseId": { - "description": "The resource identifier of the restorable dropped database associated with create operation of this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sampleName": { - "description": "The name of the sample schema to apply when creating this database.", - "oneOf": [ - { - "enum": [ - "AdventureWorksLT", - "WideWorldImportersStd", - "WideWorldImportersFull" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "The secondary type of the database if it is a secondary. Valid values are Geo, Named and Standby.", - "oneOf": [ - { - "enum": [ - "Geo", - "Named", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceDatabaseDeletionDate": { - "description": "Specifies the time that the database was deleted.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "sourceResourceId": { - "description": "The resource identifier of the source associated with the create operation of this database.\r\n\r\nThis property is only supported for DataWarehouse edition and allows to restore across subscriptions.\r\n\r\nWhen sourceResourceId is specified, sourceDatabaseId, recoverableDatabaseId, restorableDroppedDatabaseId and sourceDatabaseDeletionDate must not be specified and CreateMode must be PointInTimeRestore, Restore or Recover.\r\n\r\nWhen createMode is PointInTimeRestore, sourceResourceId must be the resource ID of the existing database or existing sql pool, and restorePointInTime must be specified.\r\n\r\nWhen createMode is Restore, sourceResourceId must be the resource ID of restorable dropped database or restorable dropped sql pool.\r\n\r\nWhen createMode is Recover, sourceResourceId must be the resource ID of recoverable database or recoverable sql pool.\r\n\r\nWhen source subscription belongs to a different tenant than target subscription, “x-ms-authorization-auxiliary” header must contain authentication token for the source tenant. For more details about “x-ms-authorization-auxiliary” header see https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/authenticate-multi-tenant ", - "type": "string" - }, - "useFreeLimit": { - "description": "Whether or not the database uses free monthly limits. Allowed on one database in a subscription.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this database is zone redundant, which means the replicas of this database will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseSqlVulnerabilityAssessmentRuleBaselineListInputProperties": { - "description": "Properties of a database Sql Vulnerability Assessment rule baseline.", - "properties": { - "latestScan": { - "description": "The latest scan flag", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "results": { - "description": "The rule baseline result list", - "oneOf": [ - { - "additionalProperties": { - "items": { - "items": { - "type": "string" - }, - "type": "array" - }, - "type": "array" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "latestScan", - "results" - ], - "type": "object" - }, - "DatabaseUserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentProperties": { - "description": "Properties of a database Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/). It is required if server level vulnerability assessment policy doesn't set", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineItem": { - "description": "Properties for an Azure SQL Database Vulnerability Assessment rule baseline's result.", - "properties": { - "result": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "result" - ], - "type": "object" - }, - "DatabaseVulnerabilityAssessmentRuleBaselineProperties": { - "description": "Properties of a database Vulnerability Assessment rule baseline.", - "properties": { - "baselineResults": { - "description": "The rule baseline result", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentRuleBaselineItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "baselineResults" - ], - "type": "object" - }, - "DistributedAvailabilityGroupDatabase": { - "description": "Database specific information", - "properties": { - "databaseName": { - "description": "The name of the database in link", - "type": "string" - } - }, - "type": "object" - }, - "DistributedAvailabilityGroupProperties": { - "description": "The properties of a distributed availability group.", - "properties": { - "databases": { - "description": "Databases in the distributed availability group", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/DistributedAvailabilityGroupDatabase" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverMode": { - "description": "The link failover mode - can be Manual if intended to be used for two-way failover with a supported SQL Server, or None for one-way failover to Azure.", - "oneOf": [ - { - "enum": [ - "None", - "Manual" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "instanceAvailabilityGroupName": { - "description": "Managed instance side availability group name", - "type": "string" - }, - "instanceLinkRole": { - "description": "Managed instance side link role", - "oneOf": [ - { - "enum": [ - "Primary", - "Secondary" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerAvailabilityGroupName": { - "description": "SQL server side availability group name", - "type": "string" - }, - "partnerEndpoint": { - "description": "SQL server side endpoint - IP or DNS resolvable name", - "type": "string" - }, - "replicationMode": { - "description": "Replication mode of the link", - "oneOf": [ - { - "enum": [ - "Async", - "Sync" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "seedingMode": { - "description": "Database seeding mode – can be Automatic (default), or Manual for supported scenarios.", - "oneOf": [ - { - "enum": [ - "Automatic", - "Manual" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolPerDatabaseSettings": { - "description": "Per database settings of an elastic pool.", - "properties": { - "autoPauseDelay": { - "description": "Auto Pause Delay for per database within pool", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxCapacity": { - "description": "The maximum capacity any one database can consume.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "The minimum capacity all databases are guaranteed.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ElasticPoolProperties": { - "description": "Properties of an elastic pool", - "properties": { - "autoPauseDelay": { - "description": "Time in minutes after which elastic pool is automatically paused. A value of -1 means that automatic pause is disabled", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "availabilityZone": { - "description": "Specifies the availability zone the pool's primary replica is pinned to.", - "oneOf": [ - { - "enum": [ - "NoPreference", - "1", - "2", - "3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "highAvailabilityReplicaCount": { - "description": "The number of secondary replicas associated with the Business Critical, Premium, or Hyperscale edition elastic pool that are used to provide high availability. Applicable only to Hyperscale elastic pools.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "licenseType": { - "description": "The license type to apply for this elastic pool.", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Maintenance configuration id assigned to the elastic pool. This configuration defines the period when the maintenance updates will will occur.", - "type": "string" - }, - "maxSizeBytes": { - "description": "The storage limit for the database elastic pool in bytes.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minCapacity": { - "description": "Minimal capacity that serverless pool will not shrink below, if not paused", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "perDatabaseSettings": { - "description": "The per database settings for the elastic pool.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolPerDatabaseSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "preferredEnclaveType": { - "description": "Type of enclave requested on the elastic pool.", - "oneOf": [ - { - "enum": [ - "Default", - "VBS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not this elastic pool is zone redundant, which means the replicas of this elastic pool will be spread across multiple availability zones.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "EncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the server key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ExtendedDatabaseBlobAuditingPolicyProperties": { - "description": "Properties of an extended database blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ExtendedServerBlobAuditingPolicyProperties": { - "description": "Properties of an extended server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "predicateExpression": { - "description": "Specifies condition of where clause when creating an audit.", - "type": "string" - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "FailoverGroupProperties": { - "description": "Properties of a failover group.", - "properties": { - "databases": { - "description": "List of databases in the failover group.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerServers": { - "description": "List of partner server information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Databases secondary type on partner server.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerServers" - ], - "type": "object" - }, - "FailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetServer": { - "description": "The target partner server where the read-only endpoint points to.", - "type": "string" - } - }, - "type": "object" - }, - "FailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "GeoBackupPolicyProperties": { - "description": "The properties of the geo backup policy.", - "properties": { - "state": { - "description": "The state of the geo backup policy.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "IPv6ServerFirewallRuleProperties": { - "description": "The properties of an IPv6 server firewall rule.", - "properties": { - "endIPv6Address": { - "description": "The end IP address of the firewall rule. Must be IPv6 format. Must be greater than or equal to startIpv6Address.", - "type": "string" - }, - "startIPv6Address": { - "description": "The start IP address of the firewall rule. Must be IPv6 format.", - "type": "string" - } - }, - "type": "object" - }, - "InstanceFailoverGroupProperties": { - "description": "Properties of a instance failover group.", - "properties": { - "managedInstancePairs": { - "description": "List of managed instance pairs in the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ManagedInstancePairInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "partnerRegions": { - "description": "Partner region information for the failover group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/PartnerRegionInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadOnlyEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "readWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "oneOf": [ - { - "$ref": "#/definitions/InstanceFailoverGroupReadWriteEndpoint" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "secondaryType": { - "description": "Type of the geo-secondary instance. Set 'Standby' if the instance is used as a DR option only.", - "oneOf": [ - { - "enum": [ - "Geo", - "Standby" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "readWriteEndpoint", - "partnerRegions", - "managedInstancePairs" - ], - "type": "object" - }, - "InstanceFailoverGroupReadOnlyEndpoint": { - "description": "Read-only endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-only endpoint for the failover group.", - "oneOf": [ - { - "enum": [ - "Disabled", - "Enabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "InstanceFailoverGroupReadWriteEndpoint": { - "description": "Read-write endpoint of the failover group instance.", - "properties": { - "failoverPolicy": { - "description": "Failover policy of the read-write endpoint for the failover group. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "enum": [ - "Manual", - "Automatic" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "failoverWithDataLossGracePeriodMinutes": { - "description": "Grace period before failover with data loss is attempted for the read-write endpoint. If failoverPolicy is Automatic then failoverWithDataLossGracePeriodMinutes is required.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "failoverPolicy" - ], - "type": "object" - }, - "InstancePoolProperties": { - "description": "Properties of an instance pool.", - "properties": { - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (price for SQL license is included) and 'BasePrice' (without SQL license price).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "subnetId": { - "description": "Resource ID of the subnet to place this instance pool in.", - "type": "string" - }, - "vCores": { - "description": "Count of vCores belonging to this instance pool.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "subnetId", - "vCores", - "licenseType" - ], - "type": "object" - }, - "JobAgentIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "tenantId": { - "description": "The job agent identity tenant id", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "The job agent identity type", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssignedUserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/JobAgentUserAssignedIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobAgentProperties": { - "description": "Properties of a job agent.", - "properties": { - "databaseId": { - "description": "Resource ID of the database to store job metadata in.", - "type": "string" - } - }, - "required": [ - "databaseId" - ], - "type": "object" - }, - "JobAgentUserAssignedIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "JobCredentialProperties": { - "description": "Properties of a job credential.", - "properties": { - "password": { - "description": "The credential password.", - "type": "string" - }, - "username": { - "description": "The credential user name.", - "type": "string" - } - }, - "required": [ - "username", - "password" - ], - "type": "object" - }, - "JobPrivateEndpointProperties": { - "description": "Properties of job agent private endpoint.", - "properties": { - "targetServerAzureResourceId": { - "description": "ARM resource id of the server the private endpoint will target.", - "type": "string" - } - }, - "required": [ - "targetServerAzureResourceId" - ], - "type": "object" - }, - "JobProperties": { - "description": "Properties of a job.", - "properties": { - "description": { - "description": "User-defined description of the job.", - "type": "string" - }, - "schedule": { - "description": "Schedule properties of the job.", - "oneOf": [ - { - "$ref": "#/definitions/JobSchedule" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobSchedule": { - "description": "Scheduling properties of a job.", - "properties": { - "enabled": { - "description": "Whether or not the schedule is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "endTime": { - "description": "Schedule end time.", - "format": "date-time", - "type": "string" - }, - "interval": { - "description": "Value of the schedule's recurring interval, if the ScheduleType is recurring. ISO8601 duration format.", - "type": "string" - }, - "startTime": { - "description": "Schedule start time.", - "format": "date-time", - "type": "string" - }, - "type": { - "description": "Schedule interval type", - "oneOf": [ - { - "enum": [ - "Once", - "Recurring" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepAction": { - "description": "The action to be executed by a job step.", - "properties": { - "source": { - "description": "The source of the action to execute.", - "oneOf": [ - { - "enum": [ - "Inline" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "description": "Type of action being executed by the job step.", - "oneOf": [ - { - "enum": [ - "TSql" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "value": { - "description": "The action value, for example the text of the T-SQL script to execute.", - "type": "string" - } - }, - "required": [ - "value" - ], - "type": "object" - }, - "JobStepExecutionOptions": { - "description": "The execution options of a job step.", - "properties": { - "initialRetryIntervalSeconds": { - "description": "Initial delay between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maximumRetryIntervalSeconds": { - "description": "The maximum amount of time to wait between retries for job step execution.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryAttempts": { - "description": "Maximum number of times the job step will be reattempted if the first attempt fails.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retryIntervalBackoffMultiplier": { - "description": "The backoff multiplier for the time between retries.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeoutSeconds": { - "description": "Execution timeout for the job step.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "JobStepOutput": { - "description": "The output configuration of a job step.", - "properties": { - "credential": { - "description": "The resource ID of the credential to use to connect to the output destination.", - "type": "string" - }, - "databaseName": { - "description": "The output destination database.", - "type": "string" - }, - "resourceGroupName": { - "description": "The output destination resource group.", - "type": "string" - }, - "schemaName": { - "description": "The output destination schema.", - "type": "string" - }, - "serverName": { - "description": "The output destination server name.", - "type": "string" - }, - "subscriptionId": { - "description": "The output destination subscription id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tableName": { - "description": "The output destination table.", - "type": "string" - }, - "type": { - "description": "The output destination type.", - "oneOf": [ - { - "enum": [ - "SqlDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverName", - "databaseName", - "tableName" - ], - "type": "object" - }, - "JobStepProperties": { - "description": "Properties of a job step.", - "properties": { - "action": { - "description": "The action payload of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepAction" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "credential": { - "description": "The resource ID of the job credential that will be used to connect to the targets.", - "type": "string" - }, - "executionOptions": { - "description": "Execution options for the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepExecutionOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "output": { - "description": "Output destination properties of the job step.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepOutput" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stepId": { - "description": "The job step's index within the job. If not specified when creating the job step, it will be created as the last step. If not specified when updating the job step, the step id is not modified.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "targetGroup": { - "description": "The resource ID of the target group that the job step will be executed on.", - "type": "string" - } - }, - "required": [ - "targetGroup", - "action" - ], - "type": "object" - }, - "JobTarget": { - "description": "A job target, for example a specific database or a container of databases that is evaluated during job execution.", - "properties": { - "databaseName": { - "description": "The target database name.", - "type": "string" - }, - "elasticPoolName": { - "description": "The target elastic pool name.", - "type": "string" - }, - "membershipType": { - "description": "Whether the target is included or excluded from the group.", - "oneOf": [ - { - "enum": [ - "Include", - "Exclude" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "refreshCredential": { - "description": "The resource ID of the credential that is used during job execution to connect to the target and determine the list of databases inside the target.", - "type": "string" - }, - "serverName": { - "description": "The target server name.", - "type": "string" - }, - "shardMapName": { - "description": "The target shard map.", - "type": "string" - }, - "type": { - "description": "The target type.", - "oneOf": [ - { - "enum": [ - "TargetGroup", - "SqlDatabase", - "SqlElasticPool", - "SqlShardMap", - "SqlServer" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "type" - ], - "type": "object" - }, - "JobTargetGroupProperties": { - "description": "Properties of job target group.", - "properties": { - "members": { - "description": "Members of the target group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/JobTarget" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "members" - ], - "type": "object" - }, - "LedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedBackupShortTermRetentionPolicyProperties": { - "description": "Properties of a short term retention policy", - "properties": { - "retentionDays": { - "description": "The backup retention period in days. This is how many days Point-in-Time Restore will be supported.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedDatabaseProperties": { - "description": "The managed database's properties.", - "properties": { - "autoCompleteRestore": { - "description": "Whether to auto complete restore of this managed database.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "catalogCollation": { - "description": "Collation of the metadata catalog.", - "oneOf": [ - { - "enum": [ - "DATABASE_DEFAULT", - "SQL_Latin1_General_CP1_CI_AS" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed database.", - "type": "string" - }, - "createMode": { - "description": "Managed database create mode. PointInTimeRestore: Create a database by restoring a point in time backup of an existing database. SourceDatabaseName, SourceManagedInstanceName and PointInTime must be specified. RestoreExternalBackup: Create a database by restoring from external backup files. Collation, StorageContainerUri and StorageContainerSasToken must be specified. Recovery: Creates a database by restoring a geo-replicated backup. RecoverableDatabaseId must be specified as the recoverable database resource ID to restore. RestoreLongTermRetentionBackup: Create a database by restoring from a long term retention backup (longTermRetentionBackupResourceId required).", - "oneOf": [ - { - "enum": [ - "Default", - "RestoreExternalBackup", - "PointInTimeRestore", - "Recovery", - "RestoreLongTermRetentionBackup" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "crossSubscriptionRestorableDroppedDatabaseId": { - "description": "The restorable cross-subscription dropped database resource id to restore when creating this database.", - "type": "string" - }, - "crossSubscriptionSourceDatabaseId": { - "description": "The resource identifier of the cross-subscription source database associated with create operation of this database.", - "type": "string" - }, - "crossSubscriptionTargetManagedInstanceId": { - "description": "Target managed instance id used in cross-subscription restore.", - "type": "string" - }, - "isLedgerOn": { - "description": "Whether or not this database is a ledger database, which means all tables in the database are ledger tables. Note: the value of this property cannot be changed after the database has been created.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "lastBackupName": { - "description": "Last backup file name for restore of this managed database.", - "type": "string" - }, - "longTermRetentionBackupResourceId": { - "description": "The name of the Long Term Retention backup to be used for restore of this managed database.", - "type": "string" - }, - "recoverableDatabaseId": { - "description": "The resource identifier of the recoverable database associated with create operation of this database.", - "type": "string" - }, - "restorableDroppedDatabaseId": { - "description": "The restorable dropped database resource id to restore when creating this database.", - "type": "string" - }, - "restorePointInTime": { - "description": "Conditional. If createMode is PointInTimeRestore, this value is required. Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "sourceDatabaseId": { - "description": "The resource identifier of the source database associated with create operation of this database.", - "type": "string" - }, - "storageContainerIdentity": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is used. Specifies the identity used for storage container authentication. Can be 'SharedAccessSignature' or 'ManagedIdentity'; if not specified 'SharedAccessSignature' is assumed.", - "type": "string" - }, - "storageContainerSasToken": { - "description": "Conditional. If createMode is RestoreExternalBackup and storageContainerIdentity is not ManagedIdentity, this value is required. Specifies the storage container sas token.", - "type": "string" - }, - "storageContainerUri": { - "description": "Conditional. If createMode is RestoreExternalBackup, this value is required. Specifies the uri of the storage container where backups for this restore are stored.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceAdministratorProperties": { - "description": "The properties of a managed instance administrator.", - "properties": { - "administratorType": { - "description": "Type of the managed instance administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the managed instance administrator.", - "type": "string" - }, - "sid": { - "description": "SID (object ID) of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the managed instance administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "administratorType", - "login", - "sid" - ], - "type": "object" - }, - "ManagedInstanceAzureADOnlyAuthProperties": { - "description": "Properties of a active directory only authentication for Managed Instance.", - "properties": { - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "azureADOnlyAuthentication" - ], - "type": "object" - }, - "ManagedInstanceDtcProperties": { - "description": "The properties of managed instance DTC.", - "properties": { - "dtcEnabled": { - "description": "Active status of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "externalDnsSuffixSearchList": { - "description": "External dns suffix search list of managed instance DTC.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "securitySettings": { - "description": "Security settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcSecuritySettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcSecuritySettings": { - "description": "The Security Settings of managed instance DTC.", - "properties": { - "snaLu6point2TransactionsEnabled": { - "description": "Allow SNA LU 6.2 Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "transactionManagerCommunicationSettings": { - "description": "Transaction Manager communication settings of managed instance DTC.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcTransactionManagerCommunicationSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsDefaultTimeout": { - "description": "Default timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsEnabled": { - "description": "Allow XA Transactions to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "xaTransactionsMaximumTimeout": { - "description": "Maximum timeout for XA Transactions (in seconds).", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceDtcTransactionManagerCommunicationSettings": { - "description": "The Transaction Manager Communication Settings of managed instance DTC.", - "properties": { - "allowInboundEnabled": { - "description": "Allow Inbound traffic to managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "allowOutboundEnabled": { - "description": "Allow Outbound traffic of managed instance DTC.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authentication": { - "description": "Authentication type of managed instance DTC.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstanceEncryptionProtectorProperties": { - "description": "Properties for an encryption protector execution.", - "properties": { - "autoRotationEnabled": { - "description": "Key auto rotation opt-in flag. Either true or false.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "serverKeyName": { - "description": "The name of the managed instance key.", - "type": "string" - }, - "serverKeyType": { - "description": "The encryption protector type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceKeyProperties": { - "description": "Properties for a key execution.", - "properties": { - "serverKeyType": { - "description": "The key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the key. If the ServerKeyType is AzureKeyVault, then the URI is required.", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ManagedInstanceLongTermRetentionPolicyProperties": { - "description": "Properties of a long term retention policy", - "properties": { - "backupStorageAccessTier": { - "description": "The BackupStorageAccessTier for the LTR backups", - "oneOf": [ - { - "enum": [ - "Hot", - "Archive" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "monthlyRetention": { - "description": "The monthly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "weekOfYear": { - "description": "The week of year to take the yearly backup in an ISO 8601 format.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "weeklyRetention": { - "description": "The weekly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - }, - "yearlyRetention": { - "description": "The yearly retention policy for an LTR backup in an ISO 8601 format.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePairInfo": { - "description": "Pairs of Managed Instances in the failover group.", - "properties": { - "partnerManagedInstanceId": { - "description": "Id of Partner Managed Instance in pair.", - "type": "string" - }, - "primaryManagedInstanceId": { - "description": "Id of Primary Managed Instance in pair.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection State of the Private Endpoint Connection.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstancePrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedInstancePrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "type": "string" - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ManagedInstanceProperties": { - "description": "The properties of a managed instance.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the managed instance. Can only be specified when the managed instance is being created (and is required for creation).", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for managed instance creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the instance. This can only be used at instance create time. If used for instance update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "authenticationMetadata": { - "description": "The managed instance's authentication metadata lookup mode.", - "oneOf": [ - { - "enum": [ - "AzureAD", - "Paired", - "Windows" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "collation": { - "description": "Collation of the managed instance.", - "type": "string" - }, - "databaseFormat": { - "description": "Specifies the internal format of instance databases specific to the SQL engine version.", - "oneOf": [ - { - "enum": [ - "AlwaysUpToDate", - "SQLServer2022" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "dnsZonePartner": { - "description": "The resource id of another managed instance whose DNS zone this managed instance will share after creation.", - "type": "string" - }, - "hybridSecondaryUsage": { - "description": "Hybrid secondary usage. Possible values are 'Active' (default value) and 'Passive' (customer uses the secondary as Passive DR).", - "oneOf": [ - { - "enum": [ - "Active", - "Passive" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "instancePoolId": { - "description": "The Id of the instance pool this managed server belongs to.", - "type": "string" - }, - "isGeneralPurposeV2": { - "description": "Whether or not this is a GPv2 variant of General Purpose edition.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "licenseType": { - "description": "The license type. Possible values are 'LicenseIncluded' (regular price inclusive of a new SQL license) and 'BasePrice' (discounted AHB price for bringing your own SQL licenses).", - "oneOf": [ - { - "enum": [ - "LicenseIncluded", - "BasePrice" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maintenanceConfigurationId": { - "description": "Specifies maintenance configuration id to apply to this managed instance.", - "type": "string" - }, - "managedInstanceCreateMode": { - "description": "Specifies the mode of database creation.\r\n\r\nDefault: Regular instance creation.\r\n\r\nRestore: Creates an instance by restoring a set of backups to specific point in time. RestorePointInTime and SourceManagedInstanceId must be specified.", - "oneOf": [ - { - "enum": [ - "Default", - "PointInTimeRestore" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', '1.0', '1.1', '1.2'", - "type": "string" - }, - "pricingModel": { - "description": "Weather or not Managed Instance is freemium.", - "oneOf": [ - { - "enum": [ - "Regular", - "Freemium" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "proxyOverride": { - "description": "Connection type used for connecting to the instance.", - "oneOf": [ - { - "enum": [ - "Proxy", - "Redirect", - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "publicDataEndpointEnabled": { - "description": "Whether or not the public data endpoint is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "requestedBackupStorageRedundancy": { - "description": "The storage account type to be used to store backups for this instance. The options are Local (LocallyRedundantStorage), Zone (ZoneRedundantStorage), Geo (GeoRedundantStorage) and GeoZone(GeoZoneRedundantStorage)", - "oneOf": [ - { - "enum": [ - "Geo", - "Local", - "Zone", - "GeoZone" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restorePointInTime": { - "description": "Specifies the point in time (ISO8601 format) of the source database that will be restored to create the new database.", - "format": "date-time", - "type": "string" - }, - "servicePrincipal": { - "description": "The managed instance's service principal.", - "oneOf": [ - { - "$ref": "#/definitions/ServicePrincipal" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sourceManagedInstanceId": { - "description": "The resource identifier of the source managed instance associated with create operation of this instance.", - "type": "string" - }, - "storageIOps": { - "description": "Storage IOps. Minimum value: 300. Maximum value: 80000. Increments of 1 IOps allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageSizeInGB": { - "description": "Storage size in GB. Minimum value: 32. Maximum value: 16384. Increments of 32 GB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageThroughputMBps": { - "description": "Storage throughput MBps parameter is not supported in the instance create/update operation.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "subnetId": { - "description": "Subnet resource ID for the managed instance.", - "type": "string" - }, - "timezoneId": { - "description": "Id of the timezone. Allowed values are timezones supported by Windows.\r\nWindows keeps details on supported timezones, including the id, in registry under\r\nKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Time Zones.\r\nYou can get those registry values via SQL Server by querying SELECT name AS timezone_id FROM sys.time_zone_info.\r\nList of Ids can also be obtained by executing [System.TimeZoneInfo]::GetSystemTimeZones() in PowerShell.\r\nAn example of valid timezone id is \"Pacific Standard Time\" or \"W. Europe Standard Time\".", - "type": "string" - }, - "totalMemoryMB": { - "description": "Total memory in MB. Minimum value: 7168. Maximum value: 891328. Increments of 1 MB allowed only. Maximum value depends on the selected hardware family and number of vCores.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "vCores": { - "description": "The number of vCores. Allowed values: 8, 16, 24, 32, 40, 64, 80.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "zoneRedundant": { - "description": "Whether or not the multi-az is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ManagedInstanceVulnerabilityAssessmentProperties": { - "description": "Properties of a managed instance vulnerability assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ManagedLedgerDigestUploadsProperties": { - "description": "The properties of a database ledger digest upload settings.", - "properties": { - "digestStorageEndpoint": { - "description": "The digest storage endpoint, which must be either an Azure blob storage endpoint or an URI for Azure Confidential Ledger.", - "type": "string" - } - }, - "type": "object" - }, - "ManagedTransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "NetworkIsolationSettings": { - "description": "Contains the ARM resources for which to create private endpoint connection.", - "properties": { - "sqlServerResourceId": { - "description": "The resource id for the SQL server which is the target of this request. If set, private endpoint connection will be created for the SQL server. Must match server which is target of the operation.", - "type": "string" - }, - "storageAccountResourceId": { - "description": "The resource id for the storage account used to store BACPAC file. If set, private endpoint connection will be created for the storage account. Must match storage account used for StorageUri parameter.", - "type": "string" - } - }, - "type": "object" - }, - "PartnerInfo": { - "description": "Partner server information for the failover group.", - "properties": { - "id": { - "description": "Resource identifier of the partner server.", - "type": "string" - } - }, - "required": [ - "id" - ], - "type": "object" - }, - "PartnerRegionInfo": { - "description": "Partner region information for the failover group.", - "properties": { - "location": { - "description": "Geo location of the partner managed instances.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateEndpointConnectionProperties": { - "description": "Properties of a private endpoint connection.", - "properties": { - "privateEndpoint": { - "description": "Private endpoint which the connection belongs to.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "privateLinkServiceConnectionState": { - "description": "Connection state of the private endpoint connection.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateLinkServiceConnectionStateProperty" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "PrivateEndpointProperty": { - "properties": { - "id": { - "description": "Resource id of the private endpoint.", - "type": "string" - } - }, - "type": "object" - }, - "PrivateLinkServiceConnectionStateProperty": { - "properties": { - "description": { - "description": "The private link service connection description.", - "type": "string" - }, - "status": { - "description": "The private link service connection status.", - "oneOf": [ - { - "enum": [ - "Approved", - "Pending", - "Rejected", - "Disconnected" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "status", - "description" - ], - "type": "object" - }, - "ReplicationLinkProperties": { - "description": "Properties of a replication link.", - "properties": { - "linkType": { - "description": "Link type (GEO, NAMED, STANDBY). Update operation does not support NAMED.", - "oneOf": [ - { - "enum": [ - "GEO", - "NAMED", - "STANDBY" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ResourceIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": { - "type": { - "description": "The identity type. Set this to 'SystemAssigned' in order to automatically create and assign an Azure Active Directory principal for the resource.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned", - "UserAssigned", - "SystemAssigned,UserAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userAssignedIdentities": { - "description": "The resource ids of the user assigned identities to use", - "oneOf": [ - { - "additionalProperties": { - "$ref": "#/definitions/UserIdentity" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ScheduleItem": { - "description": "Schedule info describing when the server should be started or stopped.", - "properties": { - "startDay": { - "description": "Start day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "startTime": { - "description": "Start time.", - "type": "string" - }, - "stopDay": { - "description": "Stop day.", - "oneOf": [ - { - "enum": [ - "Sunday", - "Monday", - "Tuesday", - "Wednesday", - "Thursday", - "Friday", - "Saturday" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "stopTime": { - "description": "Stop time.", - "type": "string" - } - }, - "required": [ - "startDay", - "startTime", - "stopDay", - "stopTime" - ], - "type": "object" - }, - "SecurityAlertPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "New", - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SecurityAlertsPolicyProperties": { - "description": "Properties of a security alert policy.", - "properties": { - "disabledAlerts": { - "description": "Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAccountAdmins": { - "description": "Specifies that the alert is sent to the account administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emailAddresses": { - "description": "Specifies an array of e-mail addresses to which the alert is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the Threat Detection audit logs.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the Threat Detection audit storage account.", - "type": "string" - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). This blob storage will hold all Threat Detection audit logs.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "SensitivityLabelProperties": { - "description": "Properties of a sensitivity label.", - "properties": { - "clientClassificationSource": { - "oneOf": [ - { - "enum": [ - "None", - "Native", - "Recommended", - "MIP" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "informationType": { - "description": "The information type.", - "type": "string" - }, - "informationTypeId": { - "description": "The information type ID.", - "type": "string" - }, - "labelId": { - "description": "The label ID.", - "type": "string" - }, - "labelName": { - "description": "The label name.", - "type": "string" - }, - "rank": { - "oneOf": [ - { - "enum": [ - "None", - "Low", - "Medium", - "High", - "Critical" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerBlobAuditingPolicyProperties": { - "description": "Properties of a server blob auditing policy.", - "properties": { - "auditActionsAndGroups": { - "description": "Specifies the Actions-Groups and Actions to audit.\r\n\r\nThe recommended set of action groups to use is the following combination - this will audit all the queries and stored procedures executed against the database, as well as successful and failed logins:\r\n\r\nBATCH_COMPLETED_GROUP,\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP,\r\nFAILED_DATABASE_AUTHENTICATION_GROUP.\r\n\r\nThis above combination is also the set that is configured by default when enabling auditing from the Azure portal.\r\n\r\nThe supported action groups to audit are (note: choose only specific groups that cover your auditing needs. Using unnecessary groups could lead to very large quantities of audit records):\r\n\r\nAPPLICATION_ROLE_CHANGE_PASSWORD_GROUP\r\nBACKUP_RESTORE_GROUP\r\nDATABASE_LOGOUT_GROUP\r\nDATABASE_OBJECT_CHANGE_GROUP\r\nDATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_OBJECT_PERMISSION_CHANGE_GROUP\r\nDATABASE_OPERATION_GROUP\r\nDATABASE_PERMISSION_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_CHANGE_GROUP\r\nDATABASE_PRINCIPAL_IMPERSONATION_GROUP\r\nDATABASE_ROLE_MEMBER_CHANGE_GROUP\r\nFAILED_DATABASE_AUTHENTICATION_GROUP\r\nSCHEMA_OBJECT_ACCESS_GROUP\r\nSCHEMA_OBJECT_CHANGE_GROUP\r\nSCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP\r\nSCHEMA_OBJECT_PERMISSION_CHANGE_GROUP\r\nSUCCESSFUL_DATABASE_AUTHENTICATION_GROUP\r\nUSER_CHANGE_PASSWORD_GROUP\r\nBATCH_STARTED_GROUP\r\nBATCH_COMPLETED_GROUP\r\nDBCC_GROUP\r\nDATABASE_OWNERSHIP_CHANGE_GROUP\r\nDATABASE_CHANGE_GROUP\r\nLEDGER_OPERATION_GROUP\r\n\r\nThese are groups that cover all sql statements and stored procedures executed against the database, and should not be used in combination with other groups as this will result in duplicate audit logs.\r\n\r\nFor more information, see [Database-Level Audit Action Groups](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-action-groups).\r\n\r\nFor Database auditing policy, specific Actions can also be specified (note that Actions cannot be specified for Server auditing policy). The supported actions to audit are:\r\nSELECT\r\nUPDATE\r\nINSERT\r\nDELETE\r\nEXECUTE\r\nRECEIVE\r\nREFERENCES\r\n\r\nThe general form for defining an action to be audited is:\r\n{action} ON {object} BY {principal}\r\n\r\nNote that in the above format can refer to an object like a table, view, or stored procedure, or an entire database or schema. For the latter cases, the forms DATABASE::{db_name} and SCHEMA::{schema_name} are used, respectively.\r\n\r\nFor example:\r\nSELECT on dbo.myTable by public\r\nSELECT on DATABASE::myDatabase by public\r\nSELECT on SCHEMA::mySchema by public\r\n\r\nFor more information, see [Database-Level Audit Actions](https://docs.microsoft.com/en-us/sql/relational-databases/security/auditing/sql-server-audit-action-groups-and-actions#database-level-audit-actions)", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the database should be also created.\r\nNote that for server level audit you should use the 'master' database as {databaseName}.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isDevopsAuditEnabled": { - "description": "Specifies the state of devops audit. If state is Enabled, devops logs will be sent to Azure Monitor.\r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled', 'IsAzureMonitorTargetEnabled' as true and 'IsDevopsAuditEnabled' as true\r\n\r\nWhen using REST API to configure auditing, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should also be created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isStorageSecondaryKeyInUse": { - "description": "Specifies whether storageAccountAccessKey value is the storage's secondary key.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queueDelayMs": { - "description": "Specifies the amount of time in milliseconds that can elapse before audit actions are forced to be processed.\r\nThe default minimum value is 1000 (1 second). The maximum is 2,147,483,647.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "retentionDays": { - "description": "Specifies the number of days to keep in the audit logs in the storage account.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerConfigurationOptionProperties": { - "description": "The properties of server configuration option.", - "properties": { - "serverConfigurationOptionValue": { - "description": "Value of the server configuration option.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "serverConfigurationOptionValue" - ], - "type": "object" - }, - "ServerConnectionPolicyProperties": { - "description": "The properties of a server connection policy.", - "properties": { - "connectionType": { - "description": "The server connection type.", - "oneOf": [ - { - "enum": [ - "Default", - "Redirect", - "Proxy" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "connectionType" - ], - "type": "object" - }, - "ServerDevOpsAuditSettingsProperties": { - "description": "Properties of a server DevOps audit settings.", - "properties": { - "isAzureMonitorTargetEnabled": { - "description": "Specifies whether DevOps audit events are sent to Azure Monitor. \r\nIn order to send the events to Azure Monitor, specify 'State' as 'Enabled' and 'IsAzureMonitorTargetEnabled' as true.\r\n\r\nWhen using REST API to configure DevOps audit, Diagnostic Settings with 'DevOpsOperationsAudit' diagnostic logs category on the master database should be also created.\r\n\r\nDiagnostic Settings URI format:\r\nPUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroup}/providers/Microsoft.Sql/servers/{serverName}/databases/master/providers/microsoft.insights/diagnosticSettings/{settingsName}?api-version=2017-05-01-preview\r\n\r\nFor more information, see [Diagnostic Settings REST API](https://go.microsoft.com/fwlink/?linkid=2033207)\r\nor [Diagnostic Settings PowerShell](https://go.microsoft.com/fwlink/?linkid=2033043)\r\n", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isManagedIdentityInUse": { - "description": "Specifies whether Managed Identity is used to access blob storage", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "state": { - "description": "Specifies the state of the audit. If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled are required.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the auditing storage account. \r\nIf state is Enabled and storageEndpoint is specified, not specifying the storageAccountAccessKey will use SQL server system-assigned managed identity to access the storage.\r\nPrerequisites for using managed identity authentication:\r\n1. Assign SQL Server a system-assigned managed identity in Azure Active Directory (AAD).\r\n2. Grant SQL Server identity access to the storage account by adding 'Storage Blob Data Contributor' RBAC role to the server identity.\r\nFor more information, see [Auditing to storage using Managed Identity authentication](https://go.microsoft.com/fwlink/?linkid=2114355)", - "type": "string" - }, - "storageAccountSubscriptionId": { - "description": "Specifies the blob storage subscription Id.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageEndpoint": { - "description": "Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net). If state is Enabled, storageEndpoint or isAzureMonitorTargetEnabled is required.", - "type": "string" - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "ServerExternalAdministrator": { - "description": "Properties of a active directory administrator.", - "properties": { - "administratorType": { - "description": "Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "azureADOnlyAuthentication": { - "description": "Azure Active Directory only Authentication enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "login": { - "description": "Login name of the server administrator.", - "type": "string" - }, - "principalType": { - "description": "Principal Type of the sever administrator.", - "oneOf": [ - { - "enum": [ - "User", - "Group", - "Application" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sid": { - "description": "SID (object ID) of the server administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tenantId": { - "description": "Tenant ID of the administrator.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "ServerFirewallRuleProperties": { - "description": "The properties of a server firewall rule.", - "properties": { - "endIpAddress": { - "description": "The end IP address of the firewall rule. Must be IPv4 format. Must be greater than or equal to startIpAddress. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - }, - "startIpAddress": { - "description": "The start IP address of the firewall rule. Must be IPv4 format. Use value '0.0.0.0' for all Azure-internal IP addresses.", - "type": "string" - } - }, - "type": "object" - }, - "ServerInfo": { - "description": "Server info for the server trust group.", - "properties": { - "serverId": { - "description": "Server Id.", - "type": "string" - } - }, - "required": [ - "serverId" - ], - "type": "object" - }, - "ServerKeyProperties": { - "description": "Properties for a server key execution.", - "properties": { - "serverKeyType": { - "description": "The server key type like 'ServiceManaged', 'AzureKeyVault'.", - "oneOf": [ - { - "enum": [ - "ServiceManaged", - "AzureKeyVault" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "uri": { - "description": "The URI of the server key. If the ServerKeyType is AzureKeyVault, then the URI is required. The AKV URI is required to be in this format: 'https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion'", - "type": "string" - } - }, - "required": [ - "serverKeyType" - ], - "type": "object" - }, - "ServerProperties": { - "description": "The properties of a server.", - "properties": { - "administratorLogin": { - "description": "Administrator username for the server. Once created it cannot be changed.", - "type": "string" - }, - "administratorLoginPassword": { - "description": "The administrator login password (required for server creation).", - "type": "string" - }, - "administrators": { - "description": "The Azure Active Directory administrator of the server. This can only be used at server create time. If used for server update, it will be ignored or it will result in an error. For updates individual APIs will need to be used.", - "oneOf": [ - { - "$ref": "#/definitions/ServerExternalAdministrator" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "federatedClientId": { - "description": "The Client id used for cross tenant CMK scenario", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isIPv6Enabled": { - "description": "Whether or not to enable IPv6 support for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "keyId": { - "description": "A CMK URI of the key to use for encryption.", - "type": "string" - }, - "minimalTlsVersion": { - "description": "Minimal TLS version. Allowed values: 'None', 1.0', '1.1', '1.2', '1.3'", - "oneOf": [ - { - "enum": [ - "None", - "1.0", - "1.1", - "1.2", - "1.3" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "primaryUserAssignedIdentityId": { - "description": "The resource id of a user assigned identity to be used by default.", - "type": "string" - }, - "publicNetworkAccess": { - "description": "Whether or not public endpoint access is allowed for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled' or 'SecuredByPerimeter'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled", - "SecuredByPerimeter" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "restrictOutboundNetworkAccess": { - "description": "Whether or not to restrict outbound network access for this server. Value is optional but if passed in, must be 'Enabled' or 'Disabled'", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "version": { - "description": "The version of the server.", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustCertificateProperties": { - "description": "The properties of a server trust certificate.", - "properties": { - "publicBlob": { - "description": "The certificate public blob", - "type": "string" - } - }, - "type": "object" - }, - "ServerTrustGroupProperties": { - "description": "Properties of a server trust group.", - "properties": { - "groupMembers": { - "description": "Group members information for the server trust group.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ServerInfo" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "trustScopes": { - "description": "Trust scope of the server trust group.", - "oneOf": [ - { - "items": { - "enum": [ - "GlobalTransactions", - "ServiceBroker" - ], - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "groupMembers", - "trustScopes" - ], - "type": "object" - }, - "ServerVulnerabilityAssessmentProperties": { - "description": "Properties of a server Vulnerability Assessment.", - "properties": { - "recurringScans": { - "description": "The recurring scans settings", - "oneOf": [ - { - "$ref": "#/definitions/VulnerabilityAssessmentRecurringScansProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "storageAccountAccessKey": { - "description": "Specifies the identifier key of the storage account for vulnerability assessment scan results. If 'StorageContainerSasKey' isn't specified, storageAccountAccessKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - }, - "storageContainerPath": { - "description": "A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).", - "type": "string" - }, - "storageContainerSasKey": { - "description": "A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter. If 'storageAccountAccessKey' isn't specified, StorageContainerSasKey is required. Applies only if the storage account is not behind a Vnet or a firewall", - "type": "string" - } - }, - "required": [ - "storageContainerPath" - ], - "type": "object" - }, - "ServicePrincipal": { - "description": "The managed instance's service principal configuration for a resource.", - "properties": { - "type": { - "description": "Service principal type.", - "oneOf": [ - { - "enum": [ - "None", - "SystemAssigned" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "Sku": { - "description": "An ARM Resource SKU.", - "properties": { - "capacity": { - "description": "Capacity of the particular SKU.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "family": { - "description": "If the service has different generations of hardware, for the same SKU, then that can be captured here.", - "type": "string" - }, - "name": { - "description": "The name of the SKU, typically, a letter + Number code, e.g. P3.", - "type": "string" - }, - "size": { - "description": "Size of the particular SKU", - "type": "string" - }, - "tier": { - "description": "The tier or edition of the particular SKU, e.g. Basic, Premium.", - "type": "string" - } - }, - "required": [ - "name" - ], - "type": "object" - }, - "SqlAgentConfigurationProperties": { - "description": "Sql agent configuration properties.", - "properties": { - "state": { - "description": "The state of Sql Agent.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SqlVulnerabilityAssessmentPolicyProperties": { - "properties": { - "state": { - "description": "Specifies the state of the SQL Vulnerability Assessment, whether it is enabled or disabled or a state has not been applied yet on the specific database or server.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "StartStopManagedInstanceScheduleProperties": { - "description": "Properties of managed instance's Start/Stop schedule.", - "properties": { - "description": { - "description": "The description of the schedule.", - "type": "string" - }, - "scheduleList": { - "description": "Schedule list.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/ScheduleItem" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "timeZoneId": { - "description": "The time zone of the schedule.", - "type": "string" - } - }, - "required": [ - "scheduleList" - ], - "type": "object" - }, - "SyncAgentProperties": { - "description": "Properties of an Azure SQL Database sync agent.", - "properties": { - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync agent.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupProperties": { - "description": "Properties of a sync group.", - "properties": { - "conflictLoggingRetentionInDays": { - "description": "Conflict logging retention period.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "conflictResolutionPolicy": { - "description": "Conflict resolution policy of the sync group.", - "oneOf": [ - { - "enum": [ - "HubWin", - "MemberWin" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "enableConflictLogging": { - "description": "If conflict logging is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "hubDatabasePassword": { - "description": "Password for the sync group hub database credential.", - "type": "string" - }, - "hubDatabaseUserName": { - "description": "User name for the sync group hub database credential.", - "type": "string" - }, - "interval": { - "description": "Sync interval of the sync group.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "schema": { - "description": "Sync schema of the sync group.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupSchema" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncDatabaseId": { - "description": "ARM resource id of the sync database in the sync group.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "If use private link connection is enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchema": { - "description": "Properties of sync group schema.", - "properties": { - "masterSyncMemberName": { - "description": "Name of master sync member where the schema is from.", - "type": "string" - }, - "tables": { - "description": "List of tables in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTable" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "SyncGroupSchemaTable": { - "description": "Properties of table in sync group schema.", - "properties": { - "columns": { - "description": "List of columns in sync group schema.", - "oneOf": [ - { - "items": { - "$ref": "#/definitions/SyncGroupSchemaTableColumn" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "quotedName": { - "description": "Quoted name of sync group schema table.", - "type": "string" - } - }, - "type": "object" - }, - "SyncGroupSchemaTableColumn": { - "description": "Properties of column in sync group table.", - "properties": { - "dataSize": { - "description": "Data size of the column.", - "type": "string" - }, - "dataType": { - "description": "Data type of the column.", - "type": "string" - }, - "quotedName": { - "description": "Quoted name of sync group table column.", - "type": "string" - } - }, - "type": "object" - }, - "SyncMemberProperties": { - "description": "Properties of a sync member.", - "properties": { - "databaseName": { - "description": "Database name of the member database in the sync member.", - "type": "string" - }, - "databaseType": { - "description": "Database type of the sync member.", - "oneOf": [ - { - "enum": [ - "AzureSqlDatabase", - "SqlServerDatabase" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "password": { - "description": "Password of the member database in the sync member.", - "type": "string" - }, - "serverName": { - "description": "Server name of the member database in the sync member", - "type": "string" - }, - "sqlServerDatabaseId": { - "description": "SQL Server database id of the sync member.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncAgentId": { - "description": "ARM resource id of the sync agent in the sync member.", - "type": "string" - }, - "syncDirection": { - "description": "Sync direction of the sync member.", - "oneOf": [ - { - "enum": [ - "Bidirectional", - "OneWayMemberToHub", - "OneWayHubToMember" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "syncMemberAzureDatabaseResourceId": { - "description": "ARM resource id of the sync member logical database, for sync members in Azure.", - "type": "string" - }, - "usePrivateLinkConnection": { - "description": "Whether to use private link connection.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "userName": { - "description": "User name of the member database in the sync member.", - "type": "string" - } - }, - "type": "object" - }, - "TransparentDataEncryptionProperties": { - "description": "Properties of a transparent data encryption.", - "properties": { - "state": { - "description": "Specifies the state of the transparent data encryption.", - "oneOf": [ - { - "enum": [ - "Enabled", - "Disabled" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "state" - ], - "type": "object" - }, - "UserIdentity": { - "description": "Azure Active Directory identity configuration for a resource.", - "properties": {}, - "type": "object" - }, - "VirtualNetworkRuleProperties": { - "description": "Properties of a virtual network rule.", - "properties": { - "ignoreMissingVnetServiceEndpoint": { - "description": "Create firewall rule before the virtual network has vnet service endpoint enabled.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "virtualNetworkSubnetId": { - "description": "The ARM resource id of the virtual network subnet.", - "type": "string" - } - }, - "required": [ - "virtualNetworkSubnetId" - ], - "type": "object" - }, - "VulnerabilityAssessmentRecurringScansProperties": { - "description": "Properties of a Vulnerability Assessment recurring scans.", - "properties": { - "emailSubscriptionAdmins": { - "description": "Specifies that the schedule scan notification will be is sent to the subscription administrators.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "emails": { - "description": "Specifies an array of e-mail addresses to which the scan notification is sent.", - "oneOf": [ - { - "items": { - "type": "string" - }, - "type": "array" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "isEnabled": { - "description": "Recurring scans state.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "type": "object" - }, - "WorkloadClassifierProperties": { - "description": "Workload classifier definition. For more information look at sys.workload_management_workload_classifiers (DMV).", - "properties": { - "context": { - "description": "The workload classifier context.", - "type": "string" - }, - "endTime": { - "description": "The workload classifier end time for classification.", - "type": "string" - }, - "importance": { - "description": "The workload classifier importance.", - "type": "string" - }, - "label": { - "description": "The workload classifier label.", - "type": "string" - }, - "memberName": { - "description": "The workload classifier member name.", - "type": "string" - }, - "startTime": { - "description": "The workload classifier start time for classification.", - "type": "string" - } - }, - "required": [ - "memberName" - ], - "type": "object" - }, - "WorkloadGroupProperties": { - "description": "Workload group definition. For more information look at sys.workload_management_workload_groups (DMV).", - "properties": { - "importance": { - "description": "The workload group importance level.", - "type": "string" - }, - "maxResourcePercent": { - "description": "The workload group cap percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "maxResourcePercentPerRequest": { - "description": "The workload group request maximum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercent": { - "description": "The workload group minimum percentage resource.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "minResourcePercentPerRequest": { - "description": "The workload group request minimum grant percentage.", - "oneOf": [ - { - "type": "number" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "queryExecutionTimeout": { - "description": "The workload group query execution timeout.", - "oneOf": [ - { - "type": "integer" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - } - }, - "required": [ - "minResourcePercent", - "maxResourcePercent", - "minResourcePercentPerRequest" - ], - "type": "object" - }, - "managedInstances_administrators_childResource": { - "description": "Microsoft.Sql/managedInstances/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/managedInstances/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceAzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedBackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_childResource": { - "description": "Microsoft.Sql/managedInstances/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedDatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Ledger Digest Upload Configurations.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedLedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedTransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_distributedAvailabilityGroups_childResource": { - "description": "Microsoft.Sql/managedInstances/distributedAvailabilityGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The distributed availability group name.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DistributedAvailabilityGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "distributedAvailabilityGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dnsAliases_childResource": { - "description": "Microsoft.Sql/managedInstances/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "createDnsRecord": { - "description": "Whether or not DNS record should be created for this alias.", - "oneOf": [ - { - "type": "boolean" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_dtc_childResource": { - "description": "Microsoft.Sql/managedInstances/dtc", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance DTC.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceDtcProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dtc" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_encryptionProtector_childResource": { - "description": "Microsoft.Sql/managedInstances/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceEncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_keys_childResource": { - "description": "Microsoft.Sql/managedInstances/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the managed instance key to be operated on (updated or created).", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/managedInstances/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstancePrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/managedInstances/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverConfigurationOptions_childResource": { - "description": "Microsoft.Sql/managedInstances/serverConfigurationOptions", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server configuration option.", - "oneOf": [ - { - "enum": [ - "allowPolybaseExport" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConfigurationOptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverConfigurationOptions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_serverTrustCertificates_childResource": { - "description": "Microsoft.Sql/managedInstances/serverTrustCertificates", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of of the certificate to upload.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerTrustCertificateProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "serverTrustCertificates" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_sqlAgent_childResource": { - "description": "Microsoft.Sql/managedInstances/sqlAgent", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlAgentConfigurationProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlAgent" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_startStopSchedules_childResource": { - "description": "Microsoft.Sql/managedInstances/startStopSchedules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "Name of the managed instance Start/Stop schedule.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/StartStopManagedInstanceScheduleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "startStopSchedules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "managedInstances_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/managedInstances/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ManagedInstanceVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_administrators_childResource": { - "description": "Microsoft.Sql/servers/administrators", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server active directory administrator.", - "oneOf": [ - { - "enum": [ - "ActiveDirectory" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdministratorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "administrators" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_azureADOnlyAuthentications_childResource": { - "description": "Microsoft.Sql/servers/azureADOnlyAuthentications", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of server azure active directory only authentication.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AzureADOnlyAuthProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "azureADOnlyAuthentications" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_connectionPolicies_childResource": { - "description": "Microsoft.Sql/servers/connectionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the connection policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerConnectionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "connectionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_advancedThreatProtectionSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/advancedThreatProtectionSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Advanced Threat Protection state.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/AdvancedThreatProtectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "advancedThreatProtectionSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_auditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/auditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "auditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupLongTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupLongTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be Default.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BaseLongTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupLongTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_backupShortTermRetentionPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/backupShortTermRetentionPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The policy name. Should always be \"default\".", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/BackupShortTermRetentionPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "backupShortTermRetentionPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_childResource": { - "description": "Microsoft.Sql/servers/databases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The Azure Active Directory identity of the database.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the database.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The database SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or one of the following commands:\r\n\r\n```azurecli\r\naz sql db list-editions -l -o table\r\n````\r\n\r\n```powershell\r\nGet-AzSqlServerServiceObjective -Location \r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "databases" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the database for which the data masking policy applies.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "dataMaskingPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_dataMaskingPolicies_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/dataMaskingPolicies/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the data masking rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DataMaskingRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/databases/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedDatabaseBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_extensions_childResource": { - "description": "Microsoft.Sql/servers/databases/extensions", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseExtensionsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extensions" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_geoBackupPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/geoBackupPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the Geo backup policy. This should always be 'Default'.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/GeoBackupPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "geoBackupPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_ledgerDigestUploads_childResource": { - "description": "Microsoft.Sql/servers/databases/ledgerDigestUploads", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/LedgerDigestUploadsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ledgerDigestUploads" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_replicationLinks_childResource": { - "description": "Microsoft.Sql/servers/databases/replicationLinks", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ReplicationLinkProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "replicationLinks" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/databases/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the security alert policy.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_sqlVulnerabilityAssessments_baselines_rules_childResource": { - "description": "Microsoft.Sql/servers/databases/sqlVulnerabilityAssessments/baselines/rules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The vulnerability assessment rule ID.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseSqlVulnerabilityAssessmentRuleBaselineInputProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "rules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and capacity of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_syncGroups_syncMembers_childResource": { - "description": "Microsoft.Sql/servers/databases/syncGroups/syncMembers", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync member.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncMemberProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncMembers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_transparentDataEncryption_childResource": { - "description": "Microsoft.Sql/servers/databases/transparentDataEncryption", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the transparent data encryption configuration.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/TransparentDataEncryptionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "transparentDataEncryption" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/databases/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/DatabaseVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_databases_workloadGroups_workloadClassifiers_childResource": { - "description": "Microsoft.Sql/servers/databases/workloadGroups/workloadClassifiers", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the workload classifier to create/update.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/WorkloadClassifierProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "workloadClassifiers" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_devOpsAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/devOpsAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerDevOpsAuditSettingsProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "devOpsAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_dnsAliases_childResource": { - "description": "Microsoft.Sql/servers/dnsAliases", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server dns alias.", - "type": "string" - }, - "type": { - "enum": [ - "dnsAliases" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_elasticPools_childResource": { - "description": "Microsoft.Sql/servers/elasticPools", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the elastic pool.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ElasticPoolProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The elastic pool SKU.\r\n\r\nThe list of SKUs may vary by region and support offer. To determine the SKUs (including the SKU name, tier/edition, family, and capacity) that are available to your subscription in an Azure region, use the `Capabilities_ListByLocation` REST API or the following command:\r\n\r\n```azurecli\r\naz sql elastic-pool list-editions -l -o table\r\n````\r\n", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "elasticPools" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_encryptionProtector_childResource": { - "description": "Microsoft.Sql/servers/encryptionProtector", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the encryption protector to be updated.", - "oneOf": [ - { - "enum": [ - "current" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/EncryptionProtectorProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "encryptionProtector" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_extendedAuditingSettings_childResource": { - "description": "Microsoft.Sql/servers/extendedAuditingSettings", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ExtendedServerBlobAuditingPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "extendedAuditingSettings" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_failoverGroups_childResource": { - "description": "Microsoft.Sql/servers/failoverGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the failover group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/FailoverGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "failoverGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_firewallRules_childResource": { - "description": "Microsoft.Sql/servers/firewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "firewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_ipv6FirewallRules_childResource": { - "description": "Microsoft.Sql/servers/ipv6FirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the firewall rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/IPv6ServerFirewallRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "ipv6FirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_childResource": { - "description": "Microsoft.Sql/servers/jobAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "identity": { - "description": "The identity of the job agent.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentIdentity" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "location": { - "description": "Resource location.", - "type": "string" - }, - "name": { - "description": "The name of the job agent to be created or updated.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "sku": { - "description": "The name and tier of the SKU.", - "oneOf": [ - { - "$ref": "#/definitions/Sku" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "tags": { - "description": "Resource tags.", - "oneOf": [ - { - "additionalProperties": { - "type": "string" - }, - "properties": {}, - "type": "object" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_credentials_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/credentials", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the credential.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobCredentialProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "credentials" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job to get.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "jobs" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_executions_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/executions", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The job execution id to create the job execution under.", - "oneOf": [ - { - "pattern": "^[0-9a-fA-F]{8}(-[0-9a-fA-F]{4}){3}-[0-9a-fA-F]{12}$", - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "executions" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_jobs_steps_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/jobs/steps", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the job step.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobStepProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "steps" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_privateEndpoints_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/privateEndpoints", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the private endpoint.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobPrivateEndpointProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpoints" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_jobAgents_targetGroups_childResource": { - "description": "Microsoft.Sql/servers/jobAgents/targetGroups", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the target group.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/JobTargetGroupProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "targetGroups" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_keys_childResource": { - "description": "Microsoft.Sql/servers/keys", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the server key to be operated on (updated or created). The key name is required to be in the format of 'vault_key_version'. For example, if the keyId is https://YourVaultName.vault.azure.net/keys/YourKeyName/YourKeyVersion, then the server key name should be formatted as: YourVaultName_YourKeyName_YourKeyVersion", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerKeyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "keys" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_outboundFirewallRules_childResource": { - "description": "Microsoft.Sql/servers/outboundFirewallRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "type": { - "enum": [ - "outboundFirewallRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_privateEndpointConnections_childResource": { - "description": "Microsoft.Sql/servers/privateEndpointConnections", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/PrivateEndpointConnectionProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "privateEndpointConnections" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_securityAlertPolicies_childResource": { - "description": "Microsoft.Sql/servers/securityAlertPolicies", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the threat detection policy.", - "oneOf": [ - { - "enum": [ - "Default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SecurityAlertsPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "securityAlertPolicies" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_sqlVulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/sqlVulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the SQL Vulnerability Assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SqlVulnerabilityAssessmentPolicyProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "sqlVulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_syncAgents_childResource": { - "description": "Microsoft.Sql/servers/syncAgents", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the sync agent.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/SyncAgentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "syncAgents" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_virtualNetworkRules_childResource": { - "description": "Microsoft.Sql/servers/virtualNetworkRules", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the virtual network rule.", - "type": "string" - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/VirtualNetworkRuleProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "virtualNetworkRules" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - }, - "servers_vulnerabilityAssessments_childResource": { - "description": "Microsoft.Sql/servers/vulnerabilityAssessments", - "properties": { - "apiVersion": { - "enum": [ - "2023-08-01-preview" - ], - "type": "string" - }, - "name": { - "description": "The name of the vulnerability assessment.", - "oneOf": [ - { - "enum": [ - "default" - ], - "type": "string" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "properties": { - "description": "Resource properties.", - "oneOf": [ - { - "$ref": "#/definitions/ServerVulnerabilityAssessmentProperties" - }, - { - "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" - } - ] - }, - "type": { - "enum": [ - "vulnerabilityAssessments" - ], - "type": "string" - } - }, - "required": [ - "name", - "properties", - "apiVersion", - "type" - ], - "type": "object" - } - } -} \ No newline at end of file diff --git a/schemas/common/autogeneratedResources.json b/schemas/common/autogeneratedResources.json index ab4d6df4d4..02b2543e14 100644 --- a/schemas/common/autogeneratedResources.json +++ b/schemas/common/autogeneratedResources.json @@ -37822,3432 +37822,6 @@ { "$ref": "https://schema.management.azure.com/schemas/2023-12-01-preview/Microsoft.Solutions.solutions.json#/resourceDefinitions/jitRequests" }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_advisors" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_auditingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_communicationLinks" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advisors" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_disasterRecoveryConfiguration" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2014-04-01/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2015-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2017-10-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2018-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2019-06-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-02-02-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2020-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2021-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverConfigurationOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_startStopSchedules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverConfigurationOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_startStopSchedules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2022-11-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverConfigurationOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_startStopSchedules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-02-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverConfigurationOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_startStopSchedules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_replicationLinks" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_privateEndpoints" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-05-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/instancePools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_instanceFailoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/locations_serverTrustGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_distributedAvailabilityGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_dtc" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_restorableDroppedDatabases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverConfigurationOptions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_serverTrustCertificates" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_sqlAgent" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_startStopSchedules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/managedInstances_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_administrators" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_azureADOnlyAuthentications" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_connectionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_advancedThreatProtectionSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_auditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupLongTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_backupShortTermRetentionPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_dataMaskingPolicies_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_extensions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_geoBackupPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_ledgerDigestUploads" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_replicationLinks" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_schemas_tables_columns_sensitivityLabels" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_sqlVulnerabilityAssessments_baselines_rules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_syncGroups_syncMembers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_transparentDataEncryption" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_vulnerabilityAssessments_rules_baselines" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_databases_workloadGroups_workloadClassifiers" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_devOpsAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_dnsAliases" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_elasticPools" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_encryptionProtector" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_extendedAuditingSettings" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_failoverGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_firewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_ipv6FirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_credentials" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_executions" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_jobs_steps" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_privateEndpoints" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_jobAgents_targetGroups" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_keys" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_outboundFirewallRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_privateEndpointConnections" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_securityAlertPolicies" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_sqlVulnerabilityAssessments" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_syncAgents" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_virtualNetworkRules" - }, - { - "$ref": "https://schema.management.azure.com/schemas/2023-08-01-preview/Microsoft.Sql.json#/resourceDefinitions/servers_vulnerabilityAssessments" - }, { "$ref": "https://schema.management.azure.com/schemas/2017-03-01-preview/Microsoft.SqlVirtualMachine.json#/resourceDefinitions/sqlVirtualMachineGroups" },