STIGQter: STIG Summary: Tanium 7.0 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 July 2018: STIGQter: STIG Summary: Tanium 7.0 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 July 2018:SV-93357r1_rule
V-78651
SRG-APP-000381
TANS-DB-000004
CAT II
10
Access the Tanium SQL server interactively.
Log on with an account with administrative privileges to the server.
Open SQL Server Management Studio and connect to Tanium instance of SQL Server.
In the left pane, click "Databases".
Select the Tanium database.
Click "Security".
Click "Users".
In the "Users" pane, right-click the Tanium Server service user account, and on the shortcut menu, click "Properties".
Under Database role membership, change role from sysadmin to db_owner.
Click "OK".
Access the Tanium SQL server interactively.
Log on with an account with administrative privileges to the server.
Open SQL Server Management Studio and connect to a Tanium instance of SQL Server.
In the left pane, click "Databases".
Select the Tanium database.
Click "Security".
Click "Users".
In the "Users" pane, review the role assigned to the Tanium Server service user account.
If the role assigned to the Tanium Server service account is not db_owner, this is a finding.
V-78651
False
TANS-DB-000004
Access the Tanium SQL server interactively.
Log on with an account with administrative privileges to the server.
Open SQL Server Management Studio and connect to a Tanium instance of SQL Server.
In the left pane, click "Databases".
Select the Tanium database.
Click "Security".
Click "Users".
In the "Users" pane, review the role assigned to the Tanium Server service user account.
If the role assigned to the Tanium Server service account is not db_owner, this is a finding.
M
3215