Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
Starts a vulnerability assessment scan.
Syntax
Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
[-SqlPoolObject <PSSynapseSqlPool>]
[-AsJob]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
[-ResourceGroupName <String>]
-WorkspaceName <String>
-Name <String>
[-ScanId <String>]
[-AsJob]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Description
The Start-AzSynapseSqlPoolVulnerabilityAssessmentScan cmdlet triggers a scan with ScanId identifier. Scan results will be saved under the storage defined by the Update-AzSynapseSqlPoolVulnerabilityAssessmentSetting cmdlet, under scans/{WorkspaceName}/{Name}/scan_{ScanId}.json You can monitor the progress of the scan by using the Get-AzSynapseSqlPoolVulnerabilityAssessmentScanRecord cmdlet with the scanId parameter and look at the State returned parameter. Note that you need to run Enable-AzSynapseSqlAdvancedThreatProtection and Update-AzSynapseSqlPoolVulnerabilityAssessmentSetting cmdlet as a prerequisite for using this cmdlets.
Examples
Example 1: Starts a vulnerability assessment scan
Start-AzSynapseSqlPoolVulnerabilityAssessmentScan `
-ResourceGroupName "ResourceGroup01" `
-WorkspaceName "WorkspaceName01" `
-Name "Name01" `
-ScanId "myScan"
ResourceGroupName : ResourceGroup01
WorkspaceName : WorkspaceName01
Name : Name01
ScanId : myScan
TriggerType : OnDemand
State : Fail
StartTime : 6/11/2018 1:57:27 PM
EndTime : 6/11/2018 1:57:31 PM
Error : {}
ScanResultsLocationPath : https://myaccount.blob.core.windows.net/vulnerability-assessment
scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9
Example 2: Starts a vulnerability assessment scan without a specific scan ID
Start-AzSynapseSqlPoolVulnerabilityAssessmentScan `
-ResourceGroupName "ResourceGroup01" `
-WorkspaceName "WorkspaceName01" `
-Name "Name01"
ResourceGroupName : ResourceGroup01
WorkspaceName : WorkspaceName01
Name : Name01
ScanId : 20180611_135726
TriggerType : OnDemand
State : Fail
StartTime : 6/11/2018 1:57:27 PM
EndTime : 6/11/2018 1:57:31 PM
Errors : {}
ScanResultsLocationPath : https://myaccount.blob.core.windows.net/vulnerability-assessment
scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9
This command generates a scan ID in the format of "yyyyMMdd_HHmmss" from the UTC date time.
Example 3: Starts a vulnerability assessment scan in the background
$scanJob = Start-AzSynapseSqlPoolVulnerabilityAssessmentScan `
-ResourceGroupName "ResourceGroup01" `
-WorkspaceName "WorkspaceName01" `
-Name "Name01" `
-ScanId "myScan" `
-AsJob
$scanJob | Wait-Job
$scanJob | Receive-Job
ResourceGroupName : ResourceGroup01
WorkspaceName : WorkspaceName01
Name : Name01
ScanId : myScan
TriggerType : OnDemand
State : Fail
StartTime : 6/11/2018 1:57:27 PM
EndTime : 6/11/2018 1:57:31 PM
Errors : {}
ScanResultsLocationPath : https://myaccount.blob.core.windows.net/vulnerability-assessment
scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9
Example 4: Starts a vulnerability assessment scan with a managed sql pool object
Get-AzSynapseSqlPool `
-ResourceGroupName "ResourceGroup01" `
-WorkspaceName "WorkspaceName01" `
-Name "Name01" `
| Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
ResourceGroupName : ResourceGroup01
WorkspaceName : WorkspaceName01
Name : Name01
ScanId : 20180611_135726
TriggerType : OnDemand
State : Fail
StartTime : 6/11/2018 1:57:27 PM
EndTime : 6/11/2018 1:57:31 PM
Errors : {}
ScanResultsLocationPath : https://myaccount.blob.core.windows.net/vulnerability-assessment
scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9
Example 5: Starts a vulnerability assessment scan on all the databases under a managed instance
Get-AzSynapseSqlPool `
-ResourceGroupName "ResourceGroup01" `
-WorkspaceName "WorkspaceName01" `
| Where-Object {$_.Name -ne "master"} `
| Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
ResourceGroupName : ResourceGroup01
WorkspaceName : WorkspaceName01
Name : Name01
ScanId : 20180611_135726
TriggerType : OnDemand
State : Fail
StartTime : 6/11/2018 1:57:27 PM
EndTime : 6/11/2018 1:57:31 PM
Errors : {}
ScanResultsLocationPath : https://myaccount.blob.core.windows.net/vulnerability-assessment
scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9
ResourceGroupName : ResourceGroup01
WorkspaceName : WorkspaceName01
Name : Name02
ScanId : 20180611_135726
TriggerType : OnDemand
State : Fail
StartTime : 6/11/2018 1:57:27 PM
EndTime : 6/11/2018 1:57:31 PM
Errors : {}
ScanResultsLocationPath : https://myaccount.blob.core.windows.net/vulnerability-assessment
scans/WorkspaceName01/Name02/scan_myScan.json
NumberOfFailedSecurityChecks : 9
Parameters
-AsJob
Run cmdlet in the background
Type: | SwitchParameter |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-Confirm
Prompts you for confirmation before running the cmdlet.
Type: | SwitchParameter |
Aliases: | cf |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DefaultProfile
The credentials, account, tenant, and subscription used for communication with Azure.
Type: | IAzureContextContainer |
Aliases: | AzContext, AzureRmContext, AzureCredential |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-Name
Name of Synapse SQL pool.
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-ResourceGroupName
The name of the resource group.
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-ScanId
Specifies the scan ID.
Type: | String |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-SqlPoolObject
The sql pool object to get Vulnerability Assessment scan record for
Type: | PSSynapseSqlPool |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
Type: | SwitchParameter |
Aliases: | wi |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-WorkspaceName
Name of Synapse workspace.
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
Inputs
Outputs
Microsoft.Azure.Commands.Synapse.Models.PSSynapseSqlPool.PSVulnerabilityAssessmentScanRecordModel
Azure PowerShell