5
ANy thoughts on why a fresh (month ago) setup of Dynamics 365 and Power Apps portal looks to the outside world like an unpatched instance of SQL server 2014 (someone has suggested SQL Express 2014)?
A pre-flight vulnerability scan using OpenVAS, shows ports 1433 and 5558 open to the outside world
Any thoughts appreciated.
Thanks
Hi All, thanks for the comments.
It seems that this is the "Dataverse endpoint SQL connection", as per:
docs.microsoft.com/.../dataverse-sql-query
The overall config is as designed in the circumstances and it's just a diversion (and false positive) that Nessus sees the footprint on the port as an unpatched instance of SQL server 2014.
Hey Neil.
As security is a very complicated topic, the best advise would be to open a Support Request with Microsoft.
It would be interesting to know how the tool differentiates if it's SQL Server, SQL Express,or Azure SQL: is the tool checking the compatibility level or using some other type of request? According to Back up and restore environments - Power Platform | Microsoft Docs, Dynamics 365 CRM Runs on Azure SQL Database, but from the screenshot, this option is not being considered/reported.
Regards,
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
#1
André Arnaud de Cal...
291,280
Super User 2024 Season 2
#2
Martin Dráb
230,214
Most Valuable Professional
#3
nmaenpaa
101,156
Share
Report
All responses (
Answers (