STIGQter: STIG Summary: Database Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 22 Jan 2021:

The DBMS must map the PKI-authenticated identity to an associated user account.

DISA Rule

SV-206560r617447_rule

Vulnerability Number

V-206560

Group Title

SRG-APP-000177

Rule Version

SRG-APP-000177-DB-000069

Severity

CAT II

CCI(s)

CCI-000187 - The information system, for PKI-based authentication, maps the authenticated identity to the account of the individual or group.

Weight

Fix Recommendation

Configure the DBMS to map the authenticated identity directly to the DBMS user account.

Check Contents

Review DBMS configuration to verify DBMS user accounts are being mapped directly to unique identifying information within the validated PKI certificate.

If user accounts are not being mapped to authenticated identities, this is a finding.

Vulnerability Number

V-206560

Documentable

False

Rule Version

SRG-APP-000177-DB-000069

Severity Override Guidance

Check Content Reference

Target Key

2902

The DBMS must map the PKI-authenticated identity to an associated user account.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments