MS SQL Server 2016 Instance Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Execution of startup stored procedures must be restricted to necessary cases only.
In certain situations, to provide required functionality, a DBMS needs to execute internal logic (stored procedures, functions, triggers, etc.) and/or external code modules with elevated privileges...Rule Medium Severity -
SRG-APP-000516-DB-000363
Group -
SRG-APP-000516-DB-000363
Group -
SQL Server Service Broker endpoint must utilize AES encryption.
Information can be either unintentionally or maliciously disclosed or modified during preparation for transmission, including, for example, during aggregation, at protocol transformation points, an...Rule Medium Severity -
SRG-APP-000141-DB-000093
Group -
SRG-APP-000141-DB-000093
Group -
Filestream must be disabled, unless specifically required and approved.
Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, provided by default, may not be necessary to support essential organizatio...Rule Medium Severity -
SRG-APP-000141-DB-000093
Group -
SRG-APP-000141-DB-000092
Group -
SQL Server User Options feature must be disabled, unless specifically required and approved.
SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by default, may not be necessary, and enabling them could adversely affect the ...Rule Medium Severity -
SRG-APP-000141-DB-000093
Group -
SRG-APP-000141-DB-000093
Group -
Hadoop Connectivity feature must be disabled, unless specifically required and approved.
Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, provided by default, may not be necessary to support essential organizatio...Rule Medium Severity -
SRG-APP-000141-DB-000093
Group -
Allow Polybase Export feature must be disabled, unless specifically required and approved.
Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, provided by default, may not be necessary to support essential organizatio...Rule Medium Severity -
SRG-APP-000141-DB-000093
Group -
SRG-APP-000141-DB-000092
Group -
SQL Server External Scripts Enabled feature must be disabled, unless specifically required and approved.
SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by default, may not be necessary, and enabling them could adversely affect the ...Rule Medium Severity -
SRG-APP-000516-DB-000363
Group -
SRG-APP-000141-DB-000092
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.