SQL4-00-034200 – SQL Server must disable communication protocols not required for operation.

Details

Having unnecessary protocols enabled exposes the system to avoidable threats. In a typical installation, only TCP/IP will be required.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

In SQL Server Configuration Manager, right-click on each enabled protocol that is not required. Select Disabled.

Close SQL Server Configuration Manager. Restart SQL Server.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_SQL_Server_2014_Y22M01_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

800-53|CM-7(1)(b)
CAT|II
CCI|CCI-001762
Group-ID|V-67905
Rule-ID|SV-213875r400015_rule
STIG-ID|SQL4-00-034200
STIG-Legacy|SV-82395
STIG-Legacy|V-67905
Vuln-ID|V-213875

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles