Page History

Versions Compared

Key

This line was added.
This line was removed.
Formatting was changed.

Note
Click on the Policy Template name to order the table according to Security Checks marked as default.

Access Security Checks	CIS for SQL Server 2000	CIS for SQL Server 2005	CIS for SQL Server 2008	CIS for SQL Server 2008 R2	CIS for SQL Server 2012	CIS for SQL Server 2014	CIS for SQL Server 2016	CIS for SQL Server 2017	CIS for SQL Server 2019	CIS for SQL Server 2022	DISA-NIST STIG for SQL Server 2012	DISA-NIST STIG for SQL Server 2014	DISA-NIST STIG for SQL Server 2016	European Union General Data Protection Regulation (GDPR)	HIPAA Guidelines for SQL Server	IDERA Level 1 - Basic Protection	IDERA Level 2 - Balanced Protection	IDERA Level 3 - Strong Protection	MS Best Practices Analyzer	NERC Critical Infrastructure Protection	PCI-DSS Guidelines for SQL Server	SNAC for SQL 2000	SOX Section 404	SRR Checklist for SQL Server 2000	SRR Checklist for SQL Server 2005 or later
Analysis Services Running	X	X	X												X		X	X			X
Asymmetric Key Size				X	X	X	X	X	X	X
Auto_Close set for contained databases					X	X	X	X	X	X							X	X
Backups compliance with RTO and RPO requirements											X									X
BUILTIN/Administrators Is sysadmin	X	X	X												X	X	X	X	X		X			X	XX
CLR Enabled			X	X	CLR Enabled	X	X	X	X	X	X				X				X	X
Common criteria compliance			X													X	X	X
Data Files On System Drive															X	X	X	X
Database-level Firewall Rules																X	X	X
Databases Are Trustworthy				X	X	X	X	X	X	X	X	X	X	X	X			X			X				X
Default Trace Enabled			X	X	X	X	X	X	X	X
Full-Text Search Running		X	X												X		X	X
HADR is configured														X				X
Hide Instance Option is set				X	X	X	X	X	X	X						X	X	X
Integration Services	X
Linked servers are configured
Max Number of concurrent sessions											X					X	X	X
Maximum number of error log files			X	X	X	X	X	X	X	X							X	X
Ole automation procedures			X	X	X	X	X	X	X	X				X			X	X
Other General Domain Accounts																		X
Replication Enabled		X	X												X		X	X			X			X	X
sa Account Not Disabled				X	X	X	X	X	X	X	X	X	X		X	X	X	X		X	X
sa Account Not Disabled Or Renamed		X	X	X	X	X	X	X	X	X	X	X	X		X	X	X	X		X	X				X
Sample Databases Exist	X	X	X								X	X	X	X			X	X				X		X	X
Server Is Domain Controller		X	X												X	X	X	X	X
Server-level Firewall Rules																X	X	X
Shutdown SQL Server on Trace Failure												X	X					X
SQL Agent Mail	X	X	X												X		X	X				X			X
SQL Mail Or Database Mail Enabled	X	X	X	X	X	X	X	X	X	X					X		X	X				X		X	X
SQL Server Installation Directories On System Drive															X	X	X	X
SQL Server Version	X	X	X	X	X	X	X	X	X	X					X	X	X	X	X	X	X	X		X	X
System Table Updates	X	X	X												X	X	X	X			X			X
Transport Layer Security														X				X
Unauthorized Account Check															X			X		X	X				X
User created 'sa' account does not exist						X	X	X	X	X							X	X
VSS Writer Running															X			X			X
xp_cmdshell Enabled	X			X	X	X	X	X	X				X	X	X	X	X	X	X	X			X			X
xp_cmdshell Proxy Account Exists		X	X												X	X	X	X	X		X

Scroll pdf ignore

Excerpt

Newtabfooter
alias IDERA
url http://www.idera.com
|
Newtabfooter
alias Products
url https://www.idera.com/productssolutions/sqlserver
|
Newtabfooter
alias Purchase
url https://www.idera.com/buynow/onlinestore
|
Newtabfooter
alias Support
url https://idera.secure.force.com/
|
Newtabfooter
alias Community
url http://community.idera.com
| Newtabfooter
alias Resources
url http://www.idera.com/resourcecentral
|
Newtabfooter
alias About Us
url http://www.idera.com/about/aboutus
|
Newtabfooter
alias Legal
url https://www.idera.com/legal/termsofuse

Content

Space Tools

Page History

Versions Compared

Old Version 11

New Version Current

Key

Access Security Checks

CIS for SQL Server 2000

CIS for SQL Server 2005

CIS for SQL Server 2008

CIS for SQL Server 2008R2

CIS for SQL Server 2012

CIS for SQL Server 2014

CIS for SQL Server 2016

CIS for SQL Server 2017

CIS for SQL Server 2019

CIS for SQL Server 2022

DISA-NIST STIG for SQL Server 2012

DISA-NIST STIG for SQL Server 2014

DISA-NIST STIG for SQL Server 2016

European Union General Data Protection Regulation (GDPR)

HIPAA Guidelines for SQL Server

IDERA Level 1 - Basic Protection

IDERA Level 2 - Balanced Protection

IDERA Level 3 - Strong Protection

MS Best Practices Analyzer

NERC Critical Infrastructure Protection

PCI-DSS Guidelines for SQL Server

SNAC for SQL 2000

SOX Section 404

SRR Checklist for SQL Server 2000

SRR Checklist for SQL Server 2005 or later

Analysis Services Running

Asymmetric Key Size

Auto_Close set for contained databases

Backups compliance with RTO and RPO requirements

BUILTIN/Administrators Is sysadmin

CLR Enabled

CLR Enabled

Common criteria compliance

Data Files On System Drive

Database-level Firewall Rules

Databases Are Trustworthy

Default Trace Enabled

Full-Text Search Running

HADR is configured

Hide Instance Option is set

Integration Services

Linked servers are configured

Max Number of concurrent sessions

Maximum number of error log files

Ole automation procedures

Other General Domain Accounts

Replication Enabled

sa Account Not Disabled

sa Account Not Disabled Or Renamed

Sample Databases Exist

Server Is Domain Controller

Server-level Firewall Rules

Shutdown SQL Server on Trace Failure

SQL Agent Mail

SQL Mail Or Database Mail Enabled

SQL Server Installation Directories On System Drive

SQL Server Version

System Table Updates

Transport Layer Security

Unauthorized Account Check

User created 'sa' account does not exist

VSS Writer Running

xp_cmdshell Enabled

xp_cmdshell Proxy Account Exists

CIS for SQL Server 2008
R2