The access to the Tanium SQL database must be restricted. Only the designated database administrator(s) can have elevated privileges to the Tanium SQL database.
An XCCDF Rule
Description
<VulnDiscussion>After the Tanium Server has been installed and the Tanium databases created, only the Tanium Receiver, Tanium Module, and Tanium connection manager (ad sync) service needs to access the SQL Server database.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-93355r1_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Access the Tanium SQL server interactively.
Log on with an account with administrative privileges to the server.
Open SQL Server Management Studio.
Connect to a Tanium instance of SQL Server.