STIGQter: STIG Summary: Database Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 22 Jan 2021:

The DBMS must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).

DISA Rule

SV-206563r617447_rule

Vulnerability Number

V-206563

Group Title

SRG-APP-000180

Rule Version

SRG-APP-000180-DB-000115

Severity

CAT II

CCI(s)

• CCI-000804 - The information system uniquely identifies and authenticates non-organizational users (or processes acting on behalf of non-organizational users).

Weight

10

Fix Recommendation

Configure DBMS settings to uniquely identify and authenticate all non-organizational users who log onto the system.

Check Contents

Review DBMS settings to determine whether non-organizational users are uniquely identified and authenticated when logging onto the system.

If non-organizational users are not uniquely identified and authenticated, this is a finding.

Vulnerability Number

V-206563

Documentable

False

Rule Version

SRG-APP-000180-DB-000115

Severity Override Guidance

Review DBMS settings to determine whether non-organizational users are uniquely identified and authenticated when logging onto the system.

If non-organizational users are not uniquely identified and authenticated, this is a finding.

Check Content Reference

M

Target Key

2902

Comments