STIGQter: STIG Summary: MS SQL Server 2016 Instance Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: MS SQL Server 2016 Instance Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-213940r617437_rule
V-213940
SRG-APP-000092-DB-000208
SQL6-D0-004700
CAT II
10
Configure the SQL Audit(s) to automatically start during system start-up.
ALTER SERVER AUDIT [<Server Audit Name>] WITH STATE = ON
Execute the following query:
SELECT name AS 'Audit Name',
status_desc AS 'Audit Status',
audit_file_path AS 'Current Audit File'
FROM sys.dm_server_audit_status
WHERE status_desc = 'STARTED'
Ensure the SQL STIG Audit is configured to initiate session auditing upon startup.
When Audits are enabled, they start up when the instance starts.
https://msdn.microsoft.com/en-us/library/cc280386.aspx#Anchor_2
Check if an audit is configured and enabled.
Execute the following query:
SELECT name AS 'Audit Name',
status_desc AS 'Audit Status',
audit_file_path AS 'Current Audit File'
FROM sys.dm_server_audit_status
WHERE status_desc = 'STARTED'
All currently defined audits for the SQL server instance will be listed. If no audits are returned, this is a finding.
V-213940
False
SQL6-D0-004700
When Audits are enabled, they start up when the instance starts.
https://msdn.microsoft.com/en-us/library/cc280386.aspx#Anchor_2
Check if an audit is configured and enabled.
Execute the following query:
SELECT name AS 'Audit Name',
status_desc AS 'Audit Status',
audit_file_path AS 'Current Audit File'
FROM sys.dm_server_audit_status
WHERE status_desc = 'STARTED'
All currently defined audits for the SQL server instance will be listed. If no audits are returned, this is a finding.
M
3993