II - Mission Support Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000033-DB-000084
Group -
SQL Server must enforce approved authorizations for logical access to information and database-level system resources in accordance with applicable access control policies.
Authentication with a DoD-approved PKI certificate does not necessarily imply authorization to access the database and all its contents. To mitigate the risk of unauthorized access to sensitive in...Rule Medium Severity -
SRG-APP-000089-DB-000064
Group -
SQL Server must generate Trace or Audit records for organization-defined auditable events.
Audit records can be generated from various components within the information system (e.g., network interface, hard disk, modem, etc.). From an application perspective, certain specific application...Rule Medium Severity -
SRG-APP-000090-DB-000065
Group -
Where SQL Server Audit is in use at the database level, SQL Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited at the database level.
Without the capability to restrict which roles and individuals can select which events are audited, unauthorized personnel may be able to prevent or interfere with the auditing of critical events. ...Rule Medium Severity -
SRG-APP-000133-DB-000179
Group -
SQL Server must be monitored to discover unauthorized changes to functions.
When dealing with change control issues, it should be noted, any changes to the hardware, software, and/or firmware components of SQL Server and/or application can potentially have significant effe...Rule Medium Severity -
SRG-APP-000133-DB-000179
Group -
SQL Server must be monitored to discover unauthorized changes to triggers.
When dealing with change control issues, it should be noted, any changes to the hardware, software, and/or firmware components of SQL Server and/or application can potentially have significant effe...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.