STIGQter: STIG Summary: Tanium 7.0 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 July 2018:

The Tanium SQL server must be dedicated to the Tanium database.

DISA Rule

SV-93353r1_rule

Vulnerability Number

V-78647

Group Title

SRG-APP-000323

Rule Version

TANS-DB-000002

Severity

CAT II

CCI(s)

• CCI-002346 - The organization employs organization-defined data mining prevention techniques for organization-defined data storage objects to adequately protect against data mining.

Weight

10

Fix Recommendation

Move the Tanium SQL database from the SQL server hosting multiple databases to a dedicated SQL server or remove other databases co-located with Tanium on the existing SQL server.

Check Contents

With the Tanium System Administrator's assistance, access the server on which the Tanium SQL database is installed.

Review the databases hosted by that SQL server.

If more databases exist on the SQL server than the Tanium database, this is a finding.

Vulnerability Number

V-78647

Documentable

False

Rule Version

TANS-DB-000002

Severity Override Guidance

With the Tanium System Administrator's assistance, access the server on which the Tanium SQL database is installed.

Review the databases hosted by that SQL server.

If more databases exist on the SQL server than the Tanium database, this is a finding.

Check Content Reference

M

Target Key

3215

Comments