Azure-SQLServer-Auto-Failover-Groups-Enabled

Severity : High

Description: This control ensures that Microsoft Azure SQL database servers are using auto-failover groups in order to enable database replication and automatic failover. Any outage that impacts one or more SQL databases results in unavailability of the database. Manual disaster recovery should be done which will take more time and effort to get another database up and running. Once failover groups are configured, the auto-failover groups feature allows to manage the replication and failover of a group of databases on a server or all databases in a managed instance to another region. Whether failover is manual or automatic, the failover process switches all secondary databases to primary databases in the group. After done with the failover, the DNS record is automatically updated to redirect the endpoints to the secondary database.

Remediation Steps:

Perform following :

1. Login to Azure Portal using https://portal.azure.com.

2. Navigate to SQL Server.

3. Select on SQL server reported.

4. Under the Settings, select Failover groups.

5. On the Failover Group, enter the required values.

6. Select Create.

7. Under Databases within the group, Select the database to add to group.

Important:

Reference:

• https://docs.microsoft.com/en-us/azure/azure-sql/database/auto-failover-group-configure?tabs=azure-portal#single-database