STIGQter: STIG Summary: MS SQL Server 2014 Instance Security Technical Implementation Guide Version: 1 Release: 10 Benchmark Date: 24 Apr 2020:

SQL Server and the operating system must protect SQL Server audit features from unauthorized removal.

DISA Rule

SV-82295r1_rule

Vulnerability Number

V-67805

Group Title

SRG-APP-000123-DB-000204

Rule Version

SQL4-00-014100

Severity

CAT II

CCI(s)

• CCI-001495 - The information system protects audit tools from unauthorized deletion.

Weight

10

Fix Recommendation

Apply or modify Windows permissions on tools used to view or modify audit log data (to include traces used for audit purposes), to make them accessible by authorized personnel only.

Check Contents

In Windows, review the access permissions to tools used to view or modify audit log data (to include traces used for audit purposes).

If appropriate permissions and access controls to prevent unauthorized deletions are not applied to these tools, this is a finding.

Vulnerability Number

V-67805

Documentable

False

Rule Version

SQL4-00-014100

Severity Override Guidance

In Windows, review the access permissions to tools used to view or modify audit log data (to include traces used for audit purposes).

If appropriate permissions and access controls to prevent unauthorized deletions are not applied to these tools, this is a finding.

Check Content Reference

M

Target Key

2639

Comments