STIGQter STIGQter: STIG Summary: MS SQL Server 2016 Instance Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Unused database components that are integrated in SQL Server and cannot be uninstalled must be disabled.

DISA Rule

SV-213956r617437_rule

Vulnerability Number

V-213956

Group Title

SRG-APP-000141-DB-000092

Rule Version

SQL6-D0-007100

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Disable any unused components or features that cannot be uninstalled.

Check Contents

From the server documentation, obtain a listing of required components.

Generate a listing of components installed on the server.

Click Start >> Type "SQL Server 2016 Installation Center" >> Launch the program >> Click Tools >> Click "Installed SQL Server features discovery report"

Compare the feature listing against the required components listing. Note any components that are installed, but not required.

Launch SQL Server Configuration Manager.

If any components that are installed but are not required are not disabled, this is a finding.

If any required components are not installed, this is a finding.

Vulnerability Number

V-213956

Documentable

False

Rule Version

SQL6-D0-007100

Severity Override Guidance

From the server documentation, obtain a listing of required components.

Generate a listing of components installed on the server.

Click Start >> Type "SQL Server 2016 Installation Center" >> Launch the program >> Click Tools >> Click "Installed SQL Server features discovery report"

Compare the feature listing against the required components listing. Note any components that are installed, but not required.

Launch SQL Server Configuration Manager.

If any components that are installed but are not required are not disabled, this is a finding.

If any required components are not installed, this is a finding.

Check Content Reference

M

Target Key

3993

Comments