Page History
IDERA SQL Secure provides the following new features and fixed issues.
3.2 New features
...
IDERA SQL Secure 3.2 includes the following New Security Templates:
Center for Internet Security (CIS) for SQL Server 2008 R2, 2014, and 2016.
Defense Information Systems Agency (DISA) & National Institute of Standards and Technology (NIST) for SQL Server 2012 and 2014.
- Sarbanes-Oxley Act, Section 404 (SOX 404).
- North American Electric Reliability Corporation (NERC).
...
- Adds audit support for Amazon RDS and Amazon EC2.
- Supports installing SQL Secure on Azure VM and Amazon EC2.
- Adds new security checks to support GDPR and provide a GDPR policy template.
- Updates Idera Level 1 - 3 policy templates.
- Enhances the Import/Export Policy.
- Provides an option to make bulk changes to email notification settings.
- Allows users to archive snapshots for decommissioned servers.
3.2 Fixed issues
SQL Secure is no longer having issues with expired Licenses.Anchor SQLSECU-2309 SQLSECU-2309
SQL Secure Grooming Job is no longer failing while classifying errors from warnings.Anchor SQLSECU-2269 SQLSECU-2269
The Unauthorized Account Check security check is not returning findings on SQL Server 2008 R2, it works with SQL Server 2016 and above.Anchor SQLSECU-2244 SQLSECU-2244
The explanation notes functionality is working for all security checks.Anchor SQLSECU-2223 SQLSECU-2223
The uninstallation process completes removing all SQL Secure files.Anchor SQLSECU-2151 SQLSECU-2151
SQL Secure reports show Snapshot missing data when all Sequence Objects are included in the filter.Anchor SQLSECU-2089 SQLSECU-2089
The Snapshot Data Collection process for Windows Server 2016 is no longer showing incorrect warnings.Anchor SQLSECU-2083 SQLSECU-2083
TracerX-Viewer.application no longer requires to upgrade the .NET version.Anchor SQLSECU-2074 SQLSECU-2074
SQL Secure includes the option to add new servers to Server Group Tags.Anchor SQLSECU-2064 SQLSECU-2064
The Risk Assessment Report includes the Show Risk Only option.Anchor SQLSECU-2037 SQLSECU-2037
HIPAA policy now includes msdb database as default in the criteria.Anchor SQLSECU-212 SQLSECU-212
SQL Secure installer includes the Visual C++ 2015 Redistributable.Anchor SQLSECU-2086 SQLSECU-2086
...
On this release IDERA SQL Secure updates the following Security templates:
Center for Internet Security (CIS) 2008 and 2012.
Payment Card Industry Data Security Standard (PCI-DSS).
...
IDERA SQL Secure 3.2 adds the following configuration checks:
Hidden Instance Option is Set
Auto Close Set for Contained Databases
Max Number of Concurrent Sessions
Backups Must Be in Compliance with RTO and RPO Requirements
Shutdown SQL Server on Trace Failure
Ad Hoc Distributed Queries Enabled
...
IDERA SQL Secure 3.2 adds the following access checks:
- Asymmetric Key Size
- Database Master Key Encrypted by Service Master Key
- SQL Server Database Level Encryption
- Appropriate Cryptographic Modules Have Been Used to Encrypt Data
- Database Master Keys Encrypted by Password
- Symmetric Keys Not Encrypted with a Certificate
- Implement Cell Level Encryption
...
IDERA SQL Secure 3.2 adds the following auditing checks:
- SQL Server Audit is Configured for Logins
- DISA Audit Configuration
Implement Change Data Capture
...
IDERA SQL Secure 3.2 adds the following login checks:
- SQL Logins Not Using Must Change
...
IDERA SQL Secure 3.2 adds the following permissions checks:
Limit propagation of access rights
- Direct access permissions
...
IDERA SQL Secure 3.2 now supports the repository and a monitored server of SQL Server 2017 on Windows.
3.2 Fixed issues
Anchor SQLSECU-720 SQLSECU-720 This version of SQL Secure improves the execution time of the Snapshot Comparison Report, making it able to display large dataset.Anchor SQLSECU-745 SQLSECU-745 Time out error is no longer displayed on the User Permissions Report when the report was running for 80+ databases. In addition, users can export the report to CSV format.Anchor SQLSECU-1503 SQLSECU-1503 Users now are able to filter for specific databases in Database Roles Report.Anchor SQLSECU-1177 SQLSECU-1177 Increased Excel Report Export capability to support reports with more than 65,000 rows of data.Anchor SQLSECU-750 SQLSECU-750 This release improves Risk Assessment performance, which now is able to process policies information.Anchor SQLSECU-1216 SQLSECU-1216 This release updates console installation to use existing repository.Anchor SQLSECU-1329 SQLSECU-1329 Users can configure STMP for SQL Secure mail server.Anchor SQLSECU-1501 SQLSECU-1501 Users can choose to monitor Always On Availability Group by registering the listener or individual nodes. Take into account there may be some gaps if you register using the listener.Anchor SQLSECU-1522 SQLSECU-1522 Under Security Report Card users are able to see Logins Information with Windows Accounts Details for the Suspect Logins Security Check.Anchor SQLSECU-2055 SQLSECU-2055 The Integration Services Running security check now is updated depending on the integration service status.Anchor SQLSECU-2053 SQLSECU-2053 The Details Reports for SQL Server 2000 show database roles and members, it was previously not available for this version.Anchor SQLSECU-1542 SQLSECU-1542 Updated SQL Secure version for the deployed report target folder for SSRS reports.Anchor SQLSECU-1765 SQLSECU-1765 Users need to restart the application to update the SQL Secure Repository Connection Status after adding a new license in the SQL Secure Manage License section.Anchor SQLSECU-2022 SQLSECU-2022 SQL Secure now supports international date time format.Anchor SQLSECU-2056 SQLSECU-2056 The Integration Services Login Account Not Acceptable Security Check is no longer showing incorrect data for azure databases.Anchor SQLSECU-2056 SQLSECU-2056