Network security
- public/private access (single point to point connection to the server via PrivateLink)
- release the server to virtual network
- firewall rules for public access (IP range)
- allow Azure services and resources to access to server
Account security
- MS Entra (SSO in MS using the RBAC authentication)
Firewall security (MS defender SQL)
- extra product
- detect abnormality/ all kind of rule setting
Encryption
- data is encrypted
- choose between service-managed key/ customer-managed key
Logging and Auditing
- setting up alert
- save the log with all activities