SQL2-00-013800 – SQL Server must protect audit information from unauthorized deletion.
Details If audit data were to become compromised, competent forensic analysis and discovery of the true source of potentially malicious...
- Home
- Security Hardening
- DISA STIG SQL Server 2012 Database OS V1R20
DISA STIG SQL Server 2012 Database OS V1R20
SQL2-00-014400 – SQL Server must protect the audit records generated as a result of remote access to privileged accounts and by the execution of privileged functions.
Details Protection of audit records and audit data is of critical importance. Care must be taken to ensure privileged users...SQL2-00-014600 – SQL Server must support the organizational requirement to employ automated mechanisms for enforcing access restrictions.
Details When dealing with access restrictions pertaining to change control, it should be noted, any changes to the hardware, software,...SQL2-00-014700 – SQL Server must support the employment of automated mechanisms supporting the auditing of the enforcement actions.
Details Any changes to the hardware, software, and/or firmware components of the information system and/or application can potentially have significant...SQL2-00-015350 – Software, applications, and configuration files that are part of, or related to, the SQL Server 2012 installation must be monitored to discover unauthorized changes.
Details When dealing with change control issues, it should be noted, any changes to the hardware, software, and/or firmware components...SQL2-00-015355 – Software, applications, and configuration files that are part of, or related to, the SQL Server 2012 installation must be audited.
Details When dealing with change control issues, it should be noted, any changes to the hardware, software, and/or firmware components...SQL2-00-015400 – SQL Server software installation account(s) must be restricted to authorized users.
Details When dealing with change control issues, it should be noted, any changes to the hardware, software, and/or firmware components...SQL2-00-008900 – SQL Server processes or services must run under custom, dedicated OS or domain accounts – ‘SQL Server Reporting Services’
Details Separation of duties is a prevalent Information Technology control that is implemented at different layers of the information system,...SQL2-00-015500 – Database software directories, including SQL Server configuration files, must be stored in dedicated directories, separate from the host OS and other applications.
Details When dealing with change control issues, it should be noted any changes to the hardware, software, and/or firmware components...SQL2-00-008900 – SQL Server processes or services must run under custom, dedicated OS or domain accounts – ‘SQL Server VSS Writer’
Details Separation of duties is a prevalent Information Technology control that is implemented at different layers of the information system,...