News

Microsoft Brings Advanced Threat Protection to Azure SQL

The latest addition to Microsoft's sprawling Advanced Threat Protection (ATP) product line, SQL ATP, is now available for Azure SQL Database users.

Described by Microsoft as "a new security package," SQL ATP has three main capabilities: "Data Discovery and Classification," "Threat Detection" and "Vulnerability Assessment." While the Data Discovery and Classification segment is still at the preview stage, the latter two capabilities are now production-ready, with Vulnerability Assessment having reached "general availability" status this week.

SQL ATP can be accessed through the Azure Portal or the Azure Security Center. Microsoft charges for using SQL ATP, although there's a 60-day free trial. Pricing for SQL ATP seemed to be unlisted at press time. However, this Microsoft overview article suggested that the costs are similar to Azure Security Center pricing.

"ATP pricing aligns with Azure Security Center standard tier at $15/node/month, where each protected SQL Database server is counted as one node," the article stated.

It also appears that some of the three SQL ATP capabilities, which are built into the Azure SQL Database service, can be used by organizations running SQL Server "on-premises" (that is, on their own infrastructure and not using Azure services). The capabilities are available through SQL Server Management Studio (SSMS). For instance, Microsoft's announcement explained that "VA [Vulnerability Assessment] is available for Azure SQL Database customers as well as for on-premises SQL Server customers via SSMS."

Microsoft is touting the Vulnerability Assessment segment of SQL ATP as being a useful means for meeting compliance standards, including the European Union's General Data Protection Regulation (GDPR) privacy stipulations, which will become enforceable law on May 25. Vulnerability Assessment is based on Microsoft best practices and will run a scan for "misconfigurations, excessive permissions and unprotected sensitive data," per Microsoft's documentation. Users get a report plus "actionable steps to resolve each issue," along with "customized remediation scripts where applicable."

Threat Detection performs continuous monitoring of databases. It provides users with alerts about "suspicious database activities, potential vulnerabilities, and SQL injection attacks, as well as anomalous database access patterns," according to Microsoft's documentation. It also provides recommended actions to take.

The Data Discovery and Classification segment provides a means for scanning and identifying sensitive data within databases. Microsoft also touts it as being useful for staying compliant with the GDPR. Users can add metadata labels to classify the data. Details show up in a dashboard view.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Microsoft Offers Support Extensions for Exchange 2016 and 2019

    Microsoft has introduced a paid Extended Security Update (ESU) program for on-premises Exchange Server 2016 and 2019, offering a crucial safety cushion as both versions near their Oct. 14, 2025 end-of-support date.

  • An image of planes flying around a globe

    2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • Notebook

    Microsoft Centers AI, Security and Partner Dogfooding at MCAPS

    Microsoft's second annual MCAPS for Partners event took place Tuesday, delivering a volley of updates and directives for its partners for fiscal 2026.

  • Microsoft Layoffs: AI Is the Obvious Elephant in the Room

    As Microsoft doubles down on an $80 billion bet on AI this fiscal year, its workforce reductions are drawing scrutiny over whether AI's ascent is quietly reshaping its human capital strategy, even as official messaging avoids drawing a direct line.