III - Administrative Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Hadoop Connectivity feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Allow Polybase Export feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000093
<GroupDescription></GroupDescription>Group -
Remote Data Archive feature must be disabled, unless specifically required and approved.
<VulnDiscussion>Information systems are capable of providing a wide variety of functions and services. Some of the functions and services, pr...Rule Medium Severity -
SRG-APP-000141-DB-000092
<GroupDescription></GroupDescription>Group -
SQL Server External Scripts Enabled feature must be disabled, unless specifically required and approved.
<VulnDiscussion>SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by defa...Rule Medium Severity -
SRG-APP-000516-DB-000363
<GroupDescription></GroupDescription>Group -
The SQL Server Browser service must be disabled unless specifically required and approved.
<VulnDiscussion>The SQL Server Browser simplifies the administration of SQL Server, particularly when multiple instances of SQL Server coexis...Rule Low Severity -
SRG-APP-000141-DB-000092
<GroupDescription></GroupDescription>Group -
SQL Server Replication Xps feature must be disabled, unless specifically required and approved.
<VulnDiscussion>SQL Server is capable of providing a wide range of features and services. Some of the features and services, provided by defa...Rule Medium Severity -
SRG-APP-000516-DB-000363
<GroupDescription></GroupDescription>Group -
If the SQL Server Browser Service is specifically required and approved, SQL instances must be hidden.
<VulnDiscussion>The SQL Server Browser simplifies the administration of SQL Server, particularly when multiple instances of SQL Server coexis...Rule Low Severity -
SRG-APP-000178-DB-000083
<GroupDescription></GroupDescription>Group -
When using command-line tools such as SQLCMD in a mixed-mode authentication environment, users must use a logon method that does not expose the password.
<VulnDiscussion>To prevent the compromise of authentication information, such as passwords and PINs, during the authentication process, the f...Rule High Severity -
SRG-APP-000178-DB-000083
<GroupDescription></GroupDescription>Group -
Applications must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.
<VulnDiscussion>To prevent the compromise of authentication information, such as passwords and PINs, during the authentication process, the f...Rule High Severity -
SRG-APP-000456-DB-000400
<GroupDescription></GroupDescription>Group -
Microsoft SQL Server products must be a version supported by the vendor.
<VulnDiscussion>Unsupported commercial and database systems should not be used because fixes to newly identified bugs will not be implemented...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.