U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

CIS Microsoft Azure Database Services Benchmark 2.0.0 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Microsoft Azure cpe:/o:microsoft:azure:- (View CVEs)

Checklist Highlights

Checklist Name:
CIS Microsoft Azure Database Services Benchmark
Checklist ID:
1336
Version:
2.0.0
Type:
Compliance
Review Status:
Candidate
Authority:
Third Party: Center for Internet Security (CIS)
Original Publication Date:
12/31/2025

Checklist Summary:

This benchmark - CIS Microsoft Azure Database Services Benchmark - will provide secure configuration recommendations for Azure products that Microsoft has categorized as “Database” services in the Azure Products Directory (https://azure.microsoft.com/en-us/products#databases). NOTE: There are other Database services that can be hosted in Azure (e.g. Oracle Database) which are not a part of the Azure Products Directory. For these third-party database services, there may be CIS Communities in WorkBench with specific Benchmark coverage for the third-party database. Those communities can be found by searching here: https://workbench.cisecurity.org/communities The specific Microsoft Azure services in scope of this Benchmark include: Azure Cache for Redis Azure Cosmos DB Azure Data Factory Azure Database for MySQL Azure Database for PostgreSQL Azure Database Migration Service Azure SQL (Reference) Azure SQL Database Azure SQL Managed Instance SQL Server on Azure Virtual Machines Table Storage (Reference) Azure Managed Instance for Apache Cassandra Azure Confidential Ledger (Reference) For more information on Microsoft Azure product categories and services, please refer to the Microsoft Azure Product Directory here: https://azure.microsoft.com/en-us/products/.

Checklist Role:

  • Database Management System
  • Database Server
  • Virtualization Server

Known Issues:

Not provided.

Target Audience:

This document is intended for system and application administrators, security specialists, auditors, help desk, and platform deployment personnel who plan to develop, deploy, assess, or secure solutions that incorporate Microsoft Azure.

Target Operational Environment:

  • Managed

Testing Information:

Not provided.

Regulatory Compliance:

Not provided.

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/

Product Support:

https://www.cisecurity.org/support

Point of Contact:

[email protected]

Sponsor:

Not provided.

Licensing:

https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/

Change History: 



					

						Dependency/Requirements:
					

					

						
							

								URL
								Description
							

						
						
							
						
					


					

						References:
					


					

						
							

								Reference URL
								Description
							

						
						
							
						
					


					

						NIST checklist record last modified on 04/21/2026
					

					   

							

							* This checklist is still undergoing review for inclusion into the NCP.