Surface area represents potential attack vector that can be compromised. The Surface Area Security Checks examine the security settings for configurations and components on the database and instance to reduce the surface area vector.
The Surface Area Security Checks available on the Configure the Policy section are the following:
Name | Description |
---|---|
Ad Hoc Distributed Queries Enabled | Check if Ad Hoc Distributed Queries is enabled. If configured_value is 1, then SQL Server will enable the configuration on startup. If value_in_use is 1, it is currently enabled. |
Common TCP Port Used | Determine whether TCP is using a common port on the SQL Server |
Cross Database Ownership Chaining Enabled | Determine whether Cross Database Ownership Chaining is enabled on the SQL Server |
Integration Services Running | Determine whether Integration Services is running on the SQL Server |
Notification Services Running | Determine whether Notification Services is running on the SQL Server |
Reporting Services Running | Determine whether Microsoft Reporting Services is running on the SQL Server |
SQL Server Agent Running | Determine whether the SQL Server Agent is running on the SQL Server |
SQL Server Browser Running | Determine whether the SQL Server is hidden from client computers |
Unapproved Protocols | Determine whether unapproved protocols are enabled on the SQL Server |
IDERA Website | Products | Buy | Support | Community | About Us | Resources | Legal