diff --git a/profiles/preview/sql/mgmt/sql/models.go b/profiles/preview/sql/mgmt/sql/models.go
index e09d42385590..a96490db931b 100644
--- a/profiles/preview/sql/mgmt/sql/models.go
+++ b/profiles/preview/sql/mgmt/sql/models.go
@@ -21,6 +21,15 @@ package sql
 
 import original "github.com/Azure/azure-sdk-for-go/services/sql/mgmt/2017-10-01-preview/sql"
 
+type DatabaseVulnerabilityAssessmentScansClient = original.DatabaseVulnerabilityAssessmentScansClient
+
+func NewDatabaseVulnerabilityAssessmentScansClient(subscriptionID string) DatabaseVulnerabilityAssessmentScansClient {
+	return original.NewDatabaseVulnerabilityAssessmentScansClient(subscriptionID)
+}
+func NewDatabaseVulnerabilityAssessmentScansClientWithBaseURI(baseURI string, subscriptionID string) DatabaseVulnerabilityAssessmentScansClient {
+	return original.NewDatabaseVulnerabilityAssessmentScansClientWithBaseURI(baseURI, subscriptionID)
+}
+
 type DatabaseOperationsClient = original.DatabaseOperationsClient
 
 func NewDatabaseOperationsClient(subscriptionID string) DatabaseOperationsClient {
@@ -45,11 +54,40 @@ func PossibleManagementOperationStateValues() []ManagementOperationState {
 	return original.PossibleManagementOperationStateValues()
 }
 
+type VulnerabilityAssessmentScanState = original.VulnerabilityAssessmentScanState
+
+const (
+	VulnerabilityAssessmentScanStateFailed      VulnerabilityAssessmentScanState = original.VulnerabilityAssessmentScanStateFailed
+	VulnerabilityAssessmentScanStateFailedToRun VulnerabilityAssessmentScanState = original.VulnerabilityAssessmentScanStateFailedToRun
+	VulnerabilityAssessmentScanStateInProgress  VulnerabilityAssessmentScanState = original.VulnerabilityAssessmentScanStateInProgress
+	VulnerabilityAssessmentScanStatePassed      VulnerabilityAssessmentScanState = original.VulnerabilityAssessmentScanStatePassed
+)
+
+func PossibleVulnerabilityAssessmentScanStateValues() []VulnerabilityAssessmentScanState {
+	return original.PossibleVulnerabilityAssessmentScanStateValues()
+}
+
+type VulnerabilityAssessmentScanTriggerType = original.VulnerabilityAssessmentScanTriggerType
+
+const (
+	OnDemand  VulnerabilityAssessmentScanTriggerType = original.OnDemand
+	Recurring VulnerabilityAssessmentScanTriggerType = original.Recurring
+)
+
+func PossibleVulnerabilityAssessmentScanTriggerTypeValues() []VulnerabilityAssessmentScanTriggerType {
+	return original.PossibleVulnerabilityAssessmentScanTriggerTypeValues()
+}
+
 type DatabaseOperation = original.DatabaseOperation
 type DatabaseOperationListResult = original.DatabaseOperationListResult
 type DatabaseOperationListResultIterator = original.DatabaseOperationListResultIterator
 type DatabaseOperationListResultPage = original.DatabaseOperationListResultPage
 type DatabaseOperationProperties = original.DatabaseOperationProperties
+type DatabaseVulnerabilityAssessment = original.DatabaseVulnerabilityAssessment
+type DatabaseVulnerabilityAssessmentProperties = original.DatabaseVulnerabilityAssessmentProperties
+type DatabaseVulnerabilityAssessmentScanExportProperties = original.DatabaseVulnerabilityAssessmentScanExportProperties
+type DatabaseVulnerabilityAssessmentScansExecuteFuture = original.DatabaseVulnerabilityAssessmentScansExecuteFuture
+type DatabaseVulnerabilityAssessmentScansExport = original.DatabaseVulnerabilityAssessmentScansExport
 type ElasticPoolOperation = original.ElasticPoolOperation
 type ElasticPoolOperationListResult = original.ElasticPoolOperationListResult
 type ElasticPoolOperationListResultIterator = original.ElasticPoolOperationListResultIterator
@@ -57,6 +95,14 @@ type ElasticPoolOperationListResultPage = original.ElasticPoolOperationListResul
 type ElasticPoolOperationProperties = original.ElasticPoolOperationProperties
 type ProxyResource = original.ProxyResource
 type Resource = original.Resource
+type Sku = original.Sku
+type VulnerabilityAssessmentRecurringScansProperties = original.VulnerabilityAssessmentRecurringScansProperties
+type VulnerabilityAssessmentScanError = original.VulnerabilityAssessmentScanError
+type VulnerabilityAssessmentScanRecord = original.VulnerabilityAssessmentScanRecord
+type VulnerabilityAssessmentScanRecordListResult = original.VulnerabilityAssessmentScanRecordListResult
+type VulnerabilityAssessmentScanRecordListResultIterator = original.VulnerabilityAssessmentScanRecordListResultIterator
+type VulnerabilityAssessmentScanRecordListResultPage = original.VulnerabilityAssessmentScanRecordListResultPage
+type VulnerabilityAssessmentScanRecordProperties = original.VulnerabilityAssessmentScanRecordProperties
 
 func UserAgent() string {
 	return original.UserAgent() + " profiles/preview"
diff --git a/services/sql/mgmt/2017-10-01-preview/sql/databasevulnerabilityassessmentscans.go b/services/sql/mgmt/2017-10-01-preview/sql/databasevulnerabilityassessmentscans.go
new file mode 100644
index 000000000000..0a03c373a68e
--- /dev/null
+++ b/services/sql/mgmt/2017-10-01-preview/sql/databasevulnerabilityassessmentscans.go
@@ -0,0 +1,356 @@
+package sql
+
+// Copyright (c) Microsoft and contributors.  All rights reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+// Code generated by Microsoft (R) AutoRest Code Generator.
+// Changes may cause incorrect behavior and will be lost if the code is regenerated.
+
+import (
+	"context"
+	"github.com/Azure/go-autorest/autorest"
+	"github.com/Azure/go-autorest/autorest/azure"
+	"net/http"
+)
+
+// DatabaseVulnerabilityAssessmentScansClient is the the Azure SQL Database management API provides a RESTful set of
+// web services that interact with Azure SQL Database services to manage your databases. The API enables you to create,
+// retrieve, update, and delete databases.
+type DatabaseVulnerabilityAssessmentScansClient struct {
+	BaseClient
+}
+
+// NewDatabaseVulnerabilityAssessmentScansClient creates an instance of the DatabaseVulnerabilityAssessmentScansClient
+// client.
+func NewDatabaseVulnerabilityAssessmentScansClient(subscriptionID string) DatabaseVulnerabilityAssessmentScansClient {
+	return NewDatabaseVulnerabilityAssessmentScansClientWithBaseURI(DefaultBaseURI, subscriptionID)
+}
+
+// NewDatabaseVulnerabilityAssessmentScansClientWithBaseURI creates an instance of the
+// DatabaseVulnerabilityAssessmentScansClient client.
+func NewDatabaseVulnerabilityAssessmentScansClientWithBaseURI(baseURI string, subscriptionID string) DatabaseVulnerabilityAssessmentScansClient {
+	return DatabaseVulnerabilityAssessmentScansClient{NewWithBaseURI(baseURI, subscriptionID)}
+}
+
+// Execute executes a Vulnerability Assessment database scan.
+//
+// resourceGroupName is the name of the resource group that contains the resource. You can obtain this value from
+// the Azure Resource Manager API or the portal. serverName is the name of the server. databaseName is the name of
+// the database. scanID is the vulnerability assessment scan Id of the scan to retrieve.
+func (client DatabaseVulnerabilityAssessmentScansClient) Execute(ctx context.Context, resourceGroupName string, serverName string, databaseName string, scanID string) (result DatabaseVulnerabilityAssessmentScansExecuteFuture, err error) {
+	req, err := client.ExecutePreparer(ctx, resourceGroupName, serverName, databaseName, scanID)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Execute", nil, "Failure preparing request")
+		return
+	}
+
+	result, err = client.ExecuteSender(req)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Execute", result.Response(), "Failure sending request")
+		return
+	}
+
+	return
+}
+
+// ExecutePreparer prepares the Execute request.
+func (client DatabaseVulnerabilityAssessmentScansClient) ExecutePreparer(ctx context.Context, resourceGroupName string, serverName string, databaseName string, scanID string) (*http.Request, error) {
+	pathParameters := map[string]interface{}{
+		"databaseName":                autorest.Encode("path", databaseName),
+		"resourceGroupName":           autorest.Encode("path", resourceGroupName),
+		"scanId":                      autorest.Encode("path", scanID),
+		"serverName":                  autorest.Encode("path", serverName),
+		"subscriptionId":              autorest.Encode("path", client.SubscriptionID),
+		"vulnerabilityAssessmentName": autorest.Encode("path", "default"),
+	}
+
+	const APIVersion = "2017-10-01-preview"
+	queryParameters := map[string]interface{}{
+		"api-version": APIVersion,
+	}
+
+	preparer := autorest.CreatePreparer(
+		autorest.AsPost(),
+		autorest.WithBaseURL(client.BaseURI),
+		autorest.WithPathParameters("/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/vulnerabilityAssessments/{vulnerabilityAssessmentName}/scans/{scanId}/initiateScan", pathParameters),
+		autorest.WithQueryParameters(queryParameters))
+	return preparer.Prepare((&http.Request{}).WithContext(ctx))
+}
+
+// ExecuteSender sends the Execute request. The method will close the
+// http.Response Body if it receives an error.
+func (client DatabaseVulnerabilityAssessmentScansClient) ExecuteSender(req *http.Request) (future DatabaseVulnerabilityAssessmentScansExecuteFuture, err error) {
+	sender := autorest.DecorateSender(client, azure.DoRetryWithRegistration(client.Client))
+	future.Future = azure.NewFuture(req)
+	future.req = req
+	_, err = future.Done(sender)
+	if err != nil {
+		return
+	}
+	err = autorest.Respond(future.Response(),
+		azure.WithErrorUnlessStatusCode(http.StatusOK, http.StatusAccepted))
+	return
+}
+
+// ExecuteResponder handles the response to the Execute request. The method always
+// closes the http.Response Body.
+func (client DatabaseVulnerabilityAssessmentScansClient) ExecuteResponder(resp *http.Response) (result autorest.Response, err error) {
+	err = autorest.Respond(
+		resp,
+		client.ByInspecting(),
+		azure.WithErrorUnlessStatusCode(http.StatusOK, http.StatusAccepted),
+		autorest.ByClosing())
+	result.Response = resp
+	return
+}
+
+// Export convert an existing scan result to a human readable format. If already exists nothing happens
+//
+// resourceGroupName is the name of the resource group that contains the resource. You can obtain this value from
+// the Azure Resource Manager API or the portal. serverName is the name of the server. databaseName is the name of
+// the scanned database. scanID is the vulnerability assessment scan Id.
+func (client DatabaseVulnerabilityAssessmentScansClient) Export(ctx context.Context, resourceGroupName string, serverName string, databaseName string, scanID string) (result DatabaseVulnerabilityAssessmentScansExport, err error) {
+	req, err := client.ExportPreparer(ctx, resourceGroupName, serverName, databaseName, scanID)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Export", nil, "Failure preparing request")
+		return
+	}
+
+	resp, err := client.ExportSender(req)
+	if err != nil {
+		result.Response = autorest.Response{Response: resp}
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Export", resp, "Failure sending request")
+		return
+	}
+
+	result, err = client.ExportResponder(resp)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Export", resp, "Failure responding to request")
+	}
+
+	return
+}
+
+// ExportPreparer prepares the Export request.
+func (client DatabaseVulnerabilityAssessmentScansClient) ExportPreparer(ctx context.Context, resourceGroupName string, serverName string, databaseName string, scanID string) (*http.Request, error) {
+	pathParameters := map[string]interface{}{
+		"databaseName":                autorest.Encode("path", databaseName),
+		"resourceGroupName":           autorest.Encode("path", resourceGroupName),
+		"scanId":                      autorest.Encode("path", scanID),
+		"serverName":                  autorest.Encode("path", serverName),
+		"subscriptionId":              autorest.Encode("path", client.SubscriptionID),
+		"vulnerabilityAssessmentName": autorest.Encode("path", "default"),
+	}
+
+	const APIVersion = "2017-10-01-preview"
+	queryParameters := map[string]interface{}{
+		"api-version": APIVersion,
+	}
+
+	preparer := autorest.CreatePreparer(
+		autorest.AsPost(),
+		autorest.WithBaseURL(client.BaseURI),
+		autorest.WithPathParameters("/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/vulnerabilityAssessments/{vulnerabilityAssessmentName}/scans/{scanId}/export", pathParameters),
+		autorest.WithQueryParameters(queryParameters))
+	return preparer.Prepare((&http.Request{}).WithContext(ctx))
+}
+
+// ExportSender sends the Export request. The method will close the
+// http.Response Body if it receives an error.
+func (client DatabaseVulnerabilityAssessmentScansClient) ExportSender(req *http.Request) (*http.Response, error) {
+	return autorest.SendWithSender(client, req,
+		azure.DoRetryWithRegistration(client.Client))
+}
+
+// ExportResponder handles the response to the Export request. The method always
+// closes the http.Response Body.
+func (client DatabaseVulnerabilityAssessmentScansClient) ExportResponder(resp *http.Response) (result DatabaseVulnerabilityAssessmentScansExport, err error) {
+	err = autorest.Respond(
+		resp,
+		client.ByInspecting(),
+		azure.WithErrorUnlessStatusCode(http.StatusOK, http.StatusCreated),
+		autorest.ByUnmarshallingJSON(&result),
+		autorest.ByClosing())
+	result.Response = autorest.Response{Response: resp}
+	return
+}
+
+// Get gets a vulnerability assessment scan record of a database.
+//
+// resourceGroupName is the name of the resource group that contains the resource. You can obtain this value from
+// the Azure Resource Manager API or the portal. serverName is the name of the server. databaseName is the name of
+// the database. scanID is the vulnerability assessment scan Id of the scan to retrieve.
+func (client DatabaseVulnerabilityAssessmentScansClient) Get(ctx context.Context, resourceGroupName string, serverName string, databaseName string, scanID string) (result VulnerabilityAssessmentScanRecord, err error) {
+	req, err := client.GetPreparer(ctx, resourceGroupName, serverName, databaseName, scanID)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Get", nil, "Failure preparing request")
+		return
+	}
+
+	resp, err := client.GetSender(req)
+	if err != nil {
+		result.Response = autorest.Response{Response: resp}
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Get", resp, "Failure sending request")
+		return
+	}
+
+	result, err = client.GetResponder(resp)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "Get", resp, "Failure responding to request")
+	}
+
+	return
+}
+
+// GetPreparer prepares the Get request.
+func (client DatabaseVulnerabilityAssessmentScansClient) GetPreparer(ctx context.Context, resourceGroupName string, serverName string, databaseName string, scanID string) (*http.Request, error) {
+	pathParameters := map[string]interface{}{
+		"databaseName":                autorest.Encode("path", databaseName),
+		"resourceGroupName":           autorest.Encode("path", resourceGroupName),
+		"scanId":                      autorest.Encode("path", scanID),
+		"serverName":                  autorest.Encode("path", serverName),
+		"subscriptionId":              autorest.Encode("path", client.SubscriptionID),
+		"vulnerabilityAssessmentName": autorest.Encode("path", "default"),
+	}
+
+	const APIVersion = "2017-10-01-preview"
+	queryParameters := map[string]interface{}{
+		"api-version": APIVersion,
+	}
+
+	preparer := autorest.CreatePreparer(
+		autorest.AsGet(),
+		autorest.WithBaseURL(client.BaseURI),
+		autorest.WithPathParameters("/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/vulnerabilityAssessments/{vulnerabilityAssessmentName}/scans/{scanId}", pathParameters),
+		autorest.WithQueryParameters(queryParameters))
+	return preparer.Prepare((&http.Request{}).WithContext(ctx))
+}
+
+// GetSender sends the Get request. The method will close the
+// http.Response Body if it receives an error.
+func (client DatabaseVulnerabilityAssessmentScansClient) GetSender(req *http.Request) (*http.Response, error) {
+	return autorest.SendWithSender(client, req,
+		azure.DoRetryWithRegistration(client.Client))
+}
+
+// GetResponder handles the response to the Get request. The method always
+// closes the http.Response Body.
+func (client DatabaseVulnerabilityAssessmentScansClient) GetResponder(resp *http.Response) (result VulnerabilityAssessmentScanRecord, err error) {
+	err = autorest.Respond(
+		resp,
+		client.ByInspecting(),
+		azure.WithErrorUnlessStatusCode(http.StatusOK),
+		autorest.ByUnmarshallingJSON(&result),
+		autorest.ByClosing())
+	result.Response = autorest.Response{Response: resp}
+	return
+}
+
+// ListByDatabase lists the vulnerability assessment scans of a database.
+//
+// resourceGroupName is the name of the resource group that contains the resource. You can obtain this value from
+// the Azure Resource Manager API or the portal. serverName is the name of the server. databaseName is the name of
+// the database.
+func (client DatabaseVulnerabilityAssessmentScansClient) ListByDatabase(ctx context.Context, resourceGroupName string, serverName string, databaseName string) (result VulnerabilityAssessmentScanRecordListResultPage, err error) {
+	result.fn = client.listByDatabaseNextResults
+	req, err := client.ListByDatabasePreparer(ctx, resourceGroupName, serverName, databaseName)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "ListByDatabase", nil, "Failure preparing request")
+		return
+	}
+
+	resp, err := client.ListByDatabaseSender(req)
+	if err != nil {
+		result.vasrlr.Response = autorest.Response{Response: resp}
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "ListByDatabase", resp, "Failure sending request")
+		return
+	}
+
+	result.vasrlr, err = client.ListByDatabaseResponder(resp)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "ListByDatabase", resp, "Failure responding to request")
+	}
+
+	return
+}
+
+// ListByDatabasePreparer prepares the ListByDatabase request.
+func (client DatabaseVulnerabilityAssessmentScansClient) ListByDatabasePreparer(ctx context.Context, resourceGroupName string, serverName string, databaseName string) (*http.Request, error) {
+	pathParameters := map[string]interface{}{
+		"databaseName":                autorest.Encode("path", databaseName),
+		"resourceGroupName":           autorest.Encode("path", resourceGroupName),
+		"serverName":                  autorest.Encode("path", serverName),
+		"subscriptionId":              autorest.Encode("path", client.SubscriptionID),
+		"vulnerabilityAssessmentName": autorest.Encode("path", "default"),
+	}
+
+	const APIVersion = "2017-10-01-preview"
+	queryParameters := map[string]interface{}{
+		"api-version": APIVersion,
+	}
+
+	preparer := autorest.CreatePreparer(
+		autorest.AsGet(),
+		autorest.WithBaseURL(client.BaseURI),
+		autorest.WithPathParameters("/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Sql/servers/{serverName}/databases/{databaseName}/vulnerabilityAssessments/{vulnerabilityAssessmentName}/scans", pathParameters),
+		autorest.WithQueryParameters(queryParameters))
+	return preparer.Prepare((&http.Request{}).WithContext(ctx))
+}
+
+// ListByDatabaseSender sends the ListByDatabase request. The method will close the
+// http.Response Body if it receives an error.
+func (client DatabaseVulnerabilityAssessmentScansClient) ListByDatabaseSender(req *http.Request) (*http.Response, error) {
+	return autorest.SendWithSender(client, req,
+		azure.DoRetryWithRegistration(client.Client))
+}
+
+// ListByDatabaseResponder handles the response to the ListByDatabase request. The method always
+// closes the http.Response Body.
+func (client DatabaseVulnerabilityAssessmentScansClient) ListByDatabaseResponder(resp *http.Response) (result VulnerabilityAssessmentScanRecordListResult, err error) {
+	err = autorest.Respond(
+		resp,
+		client.ByInspecting(),
+		azure.WithErrorUnlessStatusCode(http.StatusOK),
+		autorest.ByUnmarshallingJSON(&result),
+		autorest.ByClosing())
+	result.Response = autorest.Response{Response: resp}
+	return
+}
+
+// listByDatabaseNextResults retrieves the next set of results, if any.
+func (client DatabaseVulnerabilityAssessmentScansClient) listByDatabaseNextResults(lastResults VulnerabilityAssessmentScanRecordListResult) (result VulnerabilityAssessmentScanRecordListResult, err error) {
+	req, err := lastResults.vulnerabilityAssessmentScanRecordListResultPreparer()
+	if err != nil {
+		return result, autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "listByDatabaseNextResults", nil, "Failure preparing next results request")
+	}
+	if req == nil {
+		return
+	}
+	resp, err := client.ListByDatabaseSender(req)
+	if err != nil {
+		result.Response = autorest.Response{Response: resp}
+		return result, autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "listByDatabaseNextResults", resp, "Failure sending next results request")
+	}
+	result, err = client.ListByDatabaseResponder(resp)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansClient", "listByDatabaseNextResults", resp, "Failure responding to next results request")
+	}
+	return
+}
+
+// ListByDatabaseComplete enumerates all values, automatically crossing page boundaries as required.
+func (client DatabaseVulnerabilityAssessmentScansClient) ListByDatabaseComplete(ctx context.Context, resourceGroupName string, serverName string, databaseName string) (result VulnerabilityAssessmentScanRecordListResultIterator, err error) {
+	result.page, err = client.ListByDatabase(ctx, resourceGroupName, serverName, databaseName)
+	return
+}
diff --git a/services/sql/mgmt/2017-10-01-preview/sql/models.go b/services/sql/mgmt/2017-10-01-preview/sql/models.go
index a9d92dbce2bf..3ba71ccbc3fd 100644
--- a/services/sql/mgmt/2017-10-01-preview/sql/models.go
+++ b/services/sql/mgmt/2017-10-01-preview/sql/models.go
@@ -20,6 +20,7 @@ package sql
 import (
 	"encoding/json"
 	"github.com/Azure/go-autorest/autorest"
+	"github.com/Azure/go-autorest/autorest/azure"
 	"github.com/Azure/go-autorest/autorest/date"
 	"github.com/Azure/go-autorest/autorest/to"
 	"net/http"
@@ -48,6 +49,40 @@ func PossibleManagementOperationStateValues() []ManagementOperationState {
 	return []ManagementOperationState{CancelInProgress, Cancelled, Failed, InProgress, Pending, Succeeded}
 }
 
+// VulnerabilityAssessmentScanState enumerates the values for vulnerability assessment scan state.
+type VulnerabilityAssessmentScanState string
+
+const (
+	// VulnerabilityAssessmentScanStateFailed ...
+	VulnerabilityAssessmentScanStateFailed VulnerabilityAssessmentScanState = "Failed"
+	// VulnerabilityAssessmentScanStateFailedToRun ...
+	VulnerabilityAssessmentScanStateFailedToRun VulnerabilityAssessmentScanState = "FailedToRun"
+	// VulnerabilityAssessmentScanStateInProgress ...
+	VulnerabilityAssessmentScanStateInProgress VulnerabilityAssessmentScanState = "InProgress"
+	// VulnerabilityAssessmentScanStatePassed ...
+	VulnerabilityAssessmentScanStatePassed VulnerabilityAssessmentScanState = "Passed"
+)
+
+// PossibleVulnerabilityAssessmentScanStateValues returns an array of possible values for the VulnerabilityAssessmentScanState const type.
+func PossibleVulnerabilityAssessmentScanStateValues() []VulnerabilityAssessmentScanState {
+	return []VulnerabilityAssessmentScanState{VulnerabilityAssessmentScanStateFailed, VulnerabilityAssessmentScanStateFailedToRun, VulnerabilityAssessmentScanStateInProgress, VulnerabilityAssessmentScanStatePassed}
+}
+
+// VulnerabilityAssessmentScanTriggerType enumerates the values for vulnerability assessment scan trigger type.
+type VulnerabilityAssessmentScanTriggerType string
+
+const (
+	// OnDemand ...
+	OnDemand VulnerabilityAssessmentScanTriggerType = "OnDemand"
+	// Recurring ...
+	Recurring VulnerabilityAssessmentScanTriggerType = "Recurring"
+)
+
+// PossibleVulnerabilityAssessmentScanTriggerTypeValues returns an array of possible values for the VulnerabilityAssessmentScanTriggerType const type.
+func PossibleVulnerabilityAssessmentScanTriggerTypeValues() []VulnerabilityAssessmentScanTriggerType {
+	return []VulnerabilityAssessmentScanTriggerType{OnDemand, Recurring}
+}
+
 // DatabaseOperation a database operation.
 type DatabaseOperation struct {
 	// DatabaseOperationProperties - Resource properties.
@@ -263,6 +298,234 @@ type DatabaseOperationProperties struct {
 	IsCancellable *bool `json:"isCancellable,omitempty"`
 }
 
+// DatabaseVulnerabilityAssessment a database vulnerability assessment.
+type DatabaseVulnerabilityAssessment struct {
+	// DatabaseVulnerabilityAssessmentProperties - Resource properties.
+	*DatabaseVulnerabilityAssessmentProperties `json:"properties,omitempty"`
+	// ID - Resource ID.
+	ID *string `json:"id,omitempty"`
+	// Name - Resource name.
+	Name *string `json:"name,omitempty"`
+	// Type - Resource type.
+	Type *string `json:"type,omitempty"`
+}
+
+// MarshalJSON is the custom marshaler for DatabaseVulnerabilityAssessment.
+func (dva DatabaseVulnerabilityAssessment) MarshalJSON() ([]byte, error) {
+	objectMap := make(map[string]interface{})
+	if dva.DatabaseVulnerabilityAssessmentProperties != nil {
+		objectMap["properties"] = dva.DatabaseVulnerabilityAssessmentProperties
+	}
+	if dva.ID != nil {
+		objectMap["id"] = dva.ID
+	}
+	if dva.Name != nil {
+		objectMap["name"] = dva.Name
+	}
+	if dva.Type != nil {
+		objectMap["type"] = dva.Type
+	}
+	return json.Marshal(objectMap)
+}
+
+// UnmarshalJSON is the custom unmarshaler for DatabaseVulnerabilityAssessment struct.
+func (dva *DatabaseVulnerabilityAssessment) UnmarshalJSON(body []byte) error {
+	var m map[string]*json.RawMessage
+	err := json.Unmarshal(body, &m)
+	if err != nil {
+		return err
+	}
+	for k, v := range m {
+		switch k {
+		case "properties":
+			if v != nil {
+				var databaseVulnerabilityAssessmentProperties DatabaseVulnerabilityAssessmentProperties
+				err = json.Unmarshal(*v, &databaseVulnerabilityAssessmentProperties)
+				if err != nil {
+					return err
+				}
+				dva.DatabaseVulnerabilityAssessmentProperties = &databaseVulnerabilityAssessmentProperties
+			}
+		case "id":
+			if v != nil {
+				var ID string
+				err = json.Unmarshal(*v, &ID)
+				if err != nil {
+					return err
+				}
+				dva.ID = &ID
+			}
+		case "name":
+			if v != nil {
+				var name string
+				err = json.Unmarshal(*v, &name)
+				if err != nil {
+					return err
+				}
+				dva.Name = &name
+			}
+		case "type":
+			if v != nil {
+				var typeVar string
+				err = json.Unmarshal(*v, &typeVar)
+				if err != nil {
+					return err
+				}
+				dva.Type = &typeVar
+			}
+		}
+	}
+
+	return nil
+}
+
+// DatabaseVulnerabilityAssessmentProperties properties of a database Vulnerability Assessment.
+type DatabaseVulnerabilityAssessmentProperties struct {
+	// StorageContainerPath - A blob storage container path to hold the scan results (e.g. https://myStorage.blob.core.windows.net/VaScans/).
+	StorageContainerPath *string `json:"storageContainerPath,omitempty"`
+	// StorageContainerSasKey - A shared access signature (SAS Key) that has write access to the blob container specified in 'storageContainerPath' parameter.
+	StorageContainerSasKey *string `json:"storageContainerSasKey,omitempty"`
+	// RecurringScans - The recurring scans settings
+	RecurringScans *VulnerabilityAssessmentRecurringScansProperties `json:"recurringScans,omitempty"`
+}
+
+// DatabaseVulnerabilityAssessmentScanExportProperties properties of the export operation’s result.
+type DatabaseVulnerabilityAssessmentScanExportProperties struct {
+	// ExportedReportLocation - Location of the exported report (e.g. https://myStorage.blob.core.windows.net/VaScans/scans/serverName/databaseName/scan_scanId.xlsx).
+	ExportedReportLocation *string `json:"exportedReportLocation,omitempty"`
+}
+
+// DatabaseVulnerabilityAssessmentScansExecuteFuture an abstraction for monitoring and retrieving the results of a
+// long-running operation.
+type DatabaseVulnerabilityAssessmentScansExecuteFuture struct {
+	azure.Future
+	req *http.Request
+}
+
+// Result returns the result of the asynchronous operation.
+// If the operation has not completed it will return an error.
+func (future DatabaseVulnerabilityAssessmentScansExecuteFuture) Result(client DatabaseVulnerabilityAssessmentScansClient) (ar autorest.Response, err error) {
+	var done bool
+	done, err = future.Done(client)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansExecuteFuture", "Result", future.Response(), "Polling failure")
+		return
+	}
+	if !done {
+		return ar, azure.NewAsyncOpIncompleteError("sql.DatabaseVulnerabilityAssessmentScansExecuteFuture")
+	}
+	if future.PollingMethod() == azure.PollingLocation {
+		ar, err = client.ExecuteResponder(future.Response())
+		if err != nil {
+			err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansExecuteFuture", "Result", future.Response(), "Failure responding to request")
+		}
+		return
+	}
+	var req *http.Request
+	var resp *http.Response
+	if future.PollingURL() != "" {
+		req, err = http.NewRequest(http.MethodGet, future.PollingURL(), nil)
+		if err != nil {
+			return
+		}
+	} else {
+		req = autorest.ChangeToGet(future.req)
+	}
+	resp, err = autorest.SendWithSender(client, req,
+		autorest.DoRetryForStatusCodes(client.RetryAttempts, client.RetryDuration, autorest.StatusCodesForRetry...))
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansExecuteFuture", "Result", resp, "Failure sending request")
+		return
+	}
+	ar, err = client.ExecuteResponder(resp)
+	if err != nil {
+		err = autorest.NewErrorWithError(err, "sql.DatabaseVulnerabilityAssessmentScansExecuteFuture", "Result", resp, "Failure responding to request")
+	}
+	return
+}
+
+// DatabaseVulnerabilityAssessmentScansExport a database Vulnerability Assessment scan export resource.
+type DatabaseVulnerabilityAssessmentScansExport struct {
+	autorest.Response `json:"-"`
+	// DatabaseVulnerabilityAssessmentScanExportProperties - Resource properties.
+	*DatabaseVulnerabilityAssessmentScanExportProperties `json:"properties,omitempty"`
+	// ID - Resource ID.
+	ID *string `json:"id,omitempty"`
+	// Name - Resource name.
+	Name *string `json:"name,omitempty"`
+	// Type - Resource type.
+	Type *string `json:"type,omitempty"`
+}
+
+// MarshalJSON is the custom marshaler for DatabaseVulnerabilityAssessmentScansExport.
+func (dvase DatabaseVulnerabilityAssessmentScansExport) MarshalJSON() ([]byte, error) {
+	objectMap := make(map[string]interface{})
+	if dvase.DatabaseVulnerabilityAssessmentScanExportProperties != nil {
+		objectMap["properties"] = dvase.DatabaseVulnerabilityAssessmentScanExportProperties
+	}
+	if dvase.ID != nil {
+		objectMap["id"] = dvase.ID
+	}
+	if dvase.Name != nil {
+		objectMap["name"] = dvase.Name
+	}
+	if dvase.Type != nil {
+		objectMap["type"] = dvase.Type
+	}
+	return json.Marshal(objectMap)
+}
+
+// UnmarshalJSON is the custom unmarshaler for DatabaseVulnerabilityAssessmentScansExport struct.
+func (dvase *DatabaseVulnerabilityAssessmentScansExport) UnmarshalJSON(body []byte) error {
+	var m map[string]*json.RawMessage
+	err := json.Unmarshal(body, &m)
+	if err != nil {
+		return err
+	}
+	for k, v := range m {
+		switch k {
+		case "properties":
+			if v != nil {
+				var databaseVulnerabilityAssessmentScanExportProperties DatabaseVulnerabilityAssessmentScanExportProperties
+				err = json.Unmarshal(*v, &databaseVulnerabilityAssessmentScanExportProperties)
+				if err != nil {
+					return err
+				}
+				dvase.DatabaseVulnerabilityAssessmentScanExportProperties = &databaseVulnerabilityAssessmentScanExportProperties
+			}
+		case "id":
+			if v != nil {
+				var ID string
+				err = json.Unmarshal(*v, &ID)
+				if err != nil {
+					return err
+				}
+				dvase.ID = &ID
+			}
+		case "name":
+			if v != nil {
+				var name string
+				err = json.Unmarshal(*v, &name)
+				if err != nil {
+					return err
+				}
+				dvase.Name = &name
+			}
+		case "type":
+			if v != nil {
+				var typeVar string
+				err = json.Unmarshal(*v, &typeVar)
+				if err != nil {
+					return err
+				}
+				dvase.Type = &typeVar
+			}
+		}
+	}
+
+	return nil
+}
+
 // ElasticPoolOperation a elastic pool operation.
 type ElasticPoolOperation struct {
 	// ElasticPoolOperationProperties - Resource properties.
@@ -497,3 +760,240 @@ type Resource struct {
 	// Type - Resource type.
 	Type *string `json:"type,omitempty"`
 }
+
+// Sku an ARM Resource SKU.
+type Sku struct {
+	// Name - The name of the SKU, typically, a letter + Number code, e.g. P3.
+	Name *string `json:"name,omitempty"`
+	// Tier - The tier of the particular SKU, e.g. Basic, Premium.
+	Tier *string `json:"tier,omitempty"`
+	// Size - Size of the particular SKU
+	Size *string `json:"size,omitempty"`
+	// Family - If the service has different generations of hardware, for the same SKU, then that can be captured here.
+	Family *string `json:"family,omitempty"`
+	// Capacity - Capacity of the particular SKU.
+	Capacity *int32 `json:"capacity,omitempty"`
+}
+
+// VulnerabilityAssessmentRecurringScansProperties properties of a Vulnerability Assessment recurring scans.
+type VulnerabilityAssessmentRecurringScansProperties struct {
+	// IsEnabled - Recurring scans state.
+	IsEnabled *bool `json:"isEnabled,omitempty"`
+	// EmailSubscriptionAdmins - Specifies that the schedule scan notification will be is sent to the subscription administrators.
+	EmailSubscriptionAdmins *bool `json:"emailSubscriptionAdmins,omitempty"`
+	// Emails - Specifies an array of e-mail addresses to which the scan notification is sent.
+	Emails *[]string `json:"emails,omitempty"`
+}
+
+// VulnerabilityAssessmentScanError properties of a vulnerability assessment scan error.
+type VulnerabilityAssessmentScanError struct {
+	// Code - The error code.
+	Code *string `json:"code,omitempty"`
+	// Message - The error message.
+	Message *string `json:"message,omitempty"`
+}
+
+// VulnerabilityAssessmentScanRecord a vulnerability assessment scan record.
+type VulnerabilityAssessmentScanRecord struct {
+	autorest.Response `json:"-"`
+	// VulnerabilityAssessmentScanRecordProperties - Resource properties.
+	*VulnerabilityAssessmentScanRecordProperties `json:"properties,omitempty"`
+	// ID - Resource ID.
+	ID *string `json:"id,omitempty"`
+	// Name - Resource name.
+	Name *string `json:"name,omitempty"`
+	// Type - Resource type.
+	Type *string `json:"type,omitempty"`
+}
+
+// MarshalJSON is the custom marshaler for VulnerabilityAssessmentScanRecord.
+func (vasr VulnerabilityAssessmentScanRecord) MarshalJSON() ([]byte, error) {
+	objectMap := make(map[string]interface{})
+	if vasr.VulnerabilityAssessmentScanRecordProperties != nil {
+		objectMap["properties"] = vasr.VulnerabilityAssessmentScanRecordProperties
+	}
+	if vasr.ID != nil {
+		objectMap["id"] = vasr.ID
+	}
+	if vasr.Name != nil {
+		objectMap["name"] = vasr.Name
+	}
+	if vasr.Type != nil {
+		objectMap["type"] = vasr.Type
+	}
+	return json.Marshal(objectMap)
+}
+
+// UnmarshalJSON is the custom unmarshaler for VulnerabilityAssessmentScanRecord struct.
+func (vasr *VulnerabilityAssessmentScanRecord) UnmarshalJSON(body []byte) error {
+	var m map[string]*json.RawMessage
+	err := json.Unmarshal(body, &m)
+	if err != nil {
+		return err
+	}
+	for k, v := range m {
+		switch k {
+		case "properties":
+			if v != nil {
+				var vulnerabilityAssessmentScanRecordProperties VulnerabilityAssessmentScanRecordProperties
+				err = json.Unmarshal(*v, &vulnerabilityAssessmentScanRecordProperties)
+				if err != nil {
+					return err
+				}
+				vasr.VulnerabilityAssessmentScanRecordProperties = &vulnerabilityAssessmentScanRecordProperties
+			}
+		case "id":
+			if v != nil {
+				var ID string
+				err = json.Unmarshal(*v, &ID)
+				if err != nil {
+					return err
+				}
+				vasr.ID = &ID
+			}
+		case "name":
+			if v != nil {
+				var name string
+				err = json.Unmarshal(*v, &name)
+				if err != nil {
+					return err
+				}
+				vasr.Name = &name
+			}
+		case "type":
+			if v != nil {
+				var typeVar string
+				err = json.Unmarshal(*v, &typeVar)
+				if err != nil {
+					return err
+				}
+				vasr.Type = &typeVar
+			}
+		}
+	}
+
+	return nil
+}
+
+// VulnerabilityAssessmentScanRecordListResult a list of vulnerability assessment scan records.
+type VulnerabilityAssessmentScanRecordListResult struct {
+	autorest.Response `json:"-"`
+	// Value - Array of results.
+	Value *[]VulnerabilityAssessmentScanRecord `json:"value,omitempty"`
+	// NextLink - Link to retrieve next page of results.
+	NextLink *string `json:"nextLink,omitempty"`
+}
+
+// VulnerabilityAssessmentScanRecordListResultIterator provides access to a complete listing of
+// VulnerabilityAssessmentScanRecord values.
+type VulnerabilityAssessmentScanRecordListResultIterator struct {
+	i    int
+	page VulnerabilityAssessmentScanRecordListResultPage
+}
+
+// Next advances to the next value.  If there was an error making
+// the request the iterator does not advance and the error is returned.
+func (iter *VulnerabilityAssessmentScanRecordListResultIterator) Next() error {
+	iter.i++
+	if iter.i < len(iter.page.Values()) {
+		return nil
+	}
+	err := iter.page.Next()
+	if err != nil {
+		iter.i--
+		return err
+	}
+	iter.i = 0
+	return nil
+}
+
+// NotDone returns true if the enumeration should be started or is not yet complete.
+func (iter VulnerabilityAssessmentScanRecordListResultIterator) NotDone() bool {
+	return iter.page.NotDone() && iter.i < len(iter.page.Values())
+}
+
+// Response returns the raw server response from the last page request.
+func (iter VulnerabilityAssessmentScanRecordListResultIterator) Response() VulnerabilityAssessmentScanRecordListResult {
+	return iter.page.Response()
+}
+
+// Value returns the current value or a zero-initialized value if the
+// iterator has advanced beyond the end of the collection.
+func (iter VulnerabilityAssessmentScanRecordListResultIterator) Value() VulnerabilityAssessmentScanRecord {
+	if !iter.page.NotDone() {
+		return VulnerabilityAssessmentScanRecord{}
+	}
+	return iter.page.Values()[iter.i]
+}
+
+// IsEmpty returns true if the ListResult contains no values.
+func (vasrlr VulnerabilityAssessmentScanRecordListResult) IsEmpty() bool {
+	return vasrlr.Value == nil || len(*vasrlr.Value) == 0
+}
+
+// vulnerabilityAssessmentScanRecordListResultPreparer prepares a request to retrieve the next set of results.
+// It returns nil if no more results exist.
+func (vasrlr VulnerabilityAssessmentScanRecordListResult) vulnerabilityAssessmentScanRecordListResultPreparer() (*http.Request, error) {
+	if vasrlr.NextLink == nil || len(to.String(vasrlr.NextLink)) < 1 {
+		return nil, nil
+	}
+	return autorest.Prepare(&http.Request{},
+		autorest.AsJSON(),
+		autorest.AsGet(),
+		autorest.WithBaseURL(to.String(vasrlr.NextLink)))
+}
+
+// VulnerabilityAssessmentScanRecordListResultPage contains a page of VulnerabilityAssessmentScanRecord values.
+type VulnerabilityAssessmentScanRecordListResultPage struct {
+	fn     func(VulnerabilityAssessmentScanRecordListResult) (VulnerabilityAssessmentScanRecordListResult, error)
+	vasrlr VulnerabilityAssessmentScanRecordListResult
+}
+
+// Next advances to the next page of values.  If there was an error making
+// the request the page does not advance and the error is returned.
+func (page *VulnerabilityAssessmentScanRecordListResultPage) Next() error {
+	next, err := page.fn(page.vasrlr)
+	if err != nil {
+		return err
+	}
+	page.vasrlr = next
+	return nil
+}
+
+// NotDone returns true if the page enumeration should be started or is not yet complete.
+func (page VulnerabilityAssessmentScanRecordListResultPage) NotDone() bool {
+	return !page.vasrlr.IsEmpty()
+}
+
+// Response returns the raw server response from the last page request.
+func (page VulnerabilityAssessmentScanRecordListResultPage) Response() VulnerabilityAssessmentScanRecordListResult {
+	return page.vasrlr
+}
+
+// Values returns the slice of values for the current page or nil if there are no values.
+func (page VulnerabilityAssessmentScanRecordListResultPage) Values() []VulnerabilityAssessmentScanRecord {
+	if page.vasrlr.IsEmpty() {
+		return nil
+	}
+	return *page.vasrlr.Value
+}
+
+// VulnerabilityAssessmentScanRecordProperties properties of a vulnerability assessment scan record.
+type VulnerabilityAssessmentScanRecordProperties struct {
+	// ScanID - The scan ID.
+	ScanID *string `json:"scanId,omitempty"`
+	// TriggerType - The scan trigger type. Possible values include: 'OnDemand', 'Recurring'
+	TriggerType VulnerabilityAssessmentScanTriggerType `json:"triggerType,omitempty"`
+	// State - The scan status. Possible values include: 'VulnerabilityAssessmentScanStatePassed', 'VulnerabilityAssessmentScanStateFailed', 'VulnerabilityAssessmentScanStateFailedToRun', 'VulnerabilityAssessmentScanStateInProgress'
+	State VulnerabilityAssessmentScanState `json:"state,omitempty"`
+	// StartTime - The scan start time (UTC).
+	StartTime *date.Time `json:"startTime,omitempty"`
+	// EndTime - The scan end time (UTC).
+	EndTime *date.Time `json:"endTime,omitempty"`
+	// Errors - The scan errors.
+	Errors *[]VulnerabilityAssessmentScanError `json:"errors,omitempty"`
+	// StorageContainerPath - The scan results storage container path.
+	StorageContainerPath *string `json:"storageContainerPath,omitempty"`
+	// NumberOfFailedSecurityChecks - The number of failed security checks.
+	NumberOfFailedSecurityChecks *int32 `json:"numberOfFailedSecurityChecks,omitempty"`
+}