STIGQter: STIG Summary: Database Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 22 Jan 2021:

The DBMS must generate audit records when successful logons or connections occur.

DISA Rule

SV-206630r617447_rule

Vulnerability Number

V-206630

Group Title

SRG-APP-000503

Rule Version

SRG-APP-000503-DB-000350

Severity

CAT II

CCI(s)

CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

Fix Recommendation

Configure DBMS audit settings to generate an audit record each time a user (or other principal) logs on or connects to the DBMS. Ensure that the audit record contains the time of the event, the user ID, and session identifier.

Check Contents

Review the DBMS audit settings. If an audit record is not generated each time a user (or other principal) logs on or connects to the DBMS, this is a finding.

Vulnerability Number

V-206630

Documentable

False

Rule Version

SRG-APP-000503-DB-000350

Severity Override Guidance

Review the DBMS audit settings. If an audit record is not generated each time a user (or other principal) logs on or connects to the DBMS, this is a finding.

Check Content Reference

Target Key

2902

The DBMS must generate audit records when successful logons or connections occur.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments