I - Mission Critical Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000141-DB-000092
<GroupDescription></GroupDescription>Group -
SQL Server User Options feature must be disabled, unless specifically required and approved.
<VulnDiscussion>SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by defa...Rule Medium Severity -
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Remote Access feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Hadoop Connectivity feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Allow Polybase Export feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Remote Data Archive feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000092
<GroupDescription></GroupDescription>Group -
SQL Server External Scripts Enabled feature must be disabled, unless specifically required and approved.
<VulnDiscussion>SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by defa...Rule Medium Severity -
SRG-APP-000516-DB-000363
<GroupDescription></GroupDescription>Group -
The SQL Server Browser service must be disabled unless specifically required and approved.
<VulnDiscussion>The SQL Server Browser simplifies the administration of SQL Server, particularly when multiple instances of SQL Server coexis...Rule Low Severity -
SRG-APP-000141-DB-000092
<GroupDescription></GroupDescription>Group -
SQL Server Replication Xps feature must be disabled, unless specifically required and approved.
<VulnDiscussion>SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by defa...Rule Medium Severity -
SRG-APP-000516-DB-000363
<GroupDescription></GroupDescription>Group -
If the SQL Server Browser Service is specifically required and approved, SQL instances must be hidden.
<VulnDiscussion>The SQL Server Browser simplifies the administration of SQL Server, particularly when multiple instances of SQL Server coexis...Rule Low Severity -
SRG-APP-000178-DB-000083
<GroupDescription></GroupDescription>Group -
When using command-line tools such as SQLCMD in a mixed-mode authentication environment, users must use a logon method that does not expose the password.
<VulnDiscussion>To prevent the compromise of authentication information, such as passwords and PINs, during the authentication process, the f...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.