I have a Azure SQL Managed instance with active vulnerability scan assessment routines. And everytime it gives me VA2129 - Changes to signed modules should be authorized. I have baselined it quite a number of times but this one has become recurring.
Is there any way to disable any vulnerability assessment rule like VA2129 for my managed instance to avoid baselining so many times?
CodePudding user response:
There was a bug in VA2129 rule that return not only the signed modules, therefore the rule failed although you put a baseline (this is becuse you Probably added more modules). A fix for this rule will deploy in the next few weeks.
Currently you can't disable rule.
CodePudding user response:
There is one more option, you can use the default disable rule mechanism of Microsoft Defender For Cloud to disable this rule - https://docs.microsoft.com/en-us/azure/defender-for-cloud/exempt-resource In this case, you will not see the rule result in the portal
