The MySQL Database Server 8.0 must generate audit records when successful logons or connections occur.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>For completeness of forensic analysis, it is necessary to track who/what (a user or other principal) logs on to the Database Management System (DBMS).</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-235125r961824_rule
Severity: Medium
References: CCI-000172
Updated: 17 days ago

If currently required, configure the MySQL Database Server to produce audit records when successful logons or connections occur.

See the supplemental file "MySQL80Audit.sql".

The MySQL Database Server 8.0 must generate audit records when successful logons or connections occur.

Description

Remediation - Manual Procedure