Login Security Checks ensure credentials from users and permissions, meet organization's policy and alert if there are changes.

The Login Security Checks available on the Configure the Policy section are the following:

Name

Description

Active Directory Helper Login Account Not AcceptableDetermine whether the Active Directory Helper account is acceptable
Analysis Services Login Account Not AcceptableDetermine whether the Analysis Services account is acceptable
Blank PasswordsDetermine whether any SQL Logins have blank passwords
DISTRIBUTOR_ADMIN LoginDetermine whether DISTRIBUTOR_ADMIN account should be deleted.
Full-Text Search Login Account Not AcceptableDetermine whether the Full-Text Search Service account is acceptable
Integration Services Login Account Not AcceptableDetermine whether the Integration Services account is acceptable
Notification Services Login Account Not AcceptableDetermine whether the Notification Services account is acceptable
Orphaned usersDetermine whether any orphaned users exist in databases.
Reporting Services Login Account Not AcceptableDetermine whether the Reporting Services account is acceptable
sa Account Has Blank PasswordDetermine whether the SQL Server sa account has a blank password
sa Account Not Using Password PolicyDetermine whether password policy is enforced on the sa account
SQL Authentication EnabledDetermine whether SQL Authentication is allowed on the SQL Server
SQL Logins not using Must ChangeEnsure that all SQL Authentication Logins have the 'must_change' option set to ON.
SQL Logins Not Using Password ExpirationDetermine whether password expiration is enabled for all SQL Logins
SQL Logins Not Using Password PolicyDetermine whether password policy is enforced on all SQL Logins
SQL Server Agent Login Account Not AcceptableDetermine whether the SQL Server Agent Service account is acceptable
SQL Server Browser Login Account Not AcceptableDetermine whether the SQL Server Browser Service account is acceptable
SQL Server Service Login Account Not AcceptableDetermine whether the SQL Server Service account is acceptable
SQL Server SYSADMIN accountsDetermine whether SQL SYSADMIN accounts that are in the local Administrator role for the physical server.
Suspect LoginsDetermine whether suspect logins exist on the SQL Server
Unauthorized SQL Logins ExistDetermine whether unauthorized SQL Logins have been created on the SQL Server
VSS Writer Login Account Not AcceptableDetermine whether the VSS Writer account is acceptable
Weak PasswordsDetermine whether any SQL login passwords match the login name or a list of common and restricted passwords.



SQL Secure manages SQL Server security and permissions.
IDERA WebsiteProducts BuySupportCommunityAbout UsResourcesLegal