IDERA SQL Compliance Manager build includes many fixed issues, including the following updates.
| Expand |
|---|
|
- SQL Compliance Manager 6.3 release delivers security permissions based on the least privilege principle (as opposed to permissions based on standard user roles such as sysadmin) to further enhance the data security per user within the product.
|
| Expand |
|---|
|
- Fixed an issue where DDL events were not being captured for server-level privilege users configured through a domain group.
- Resolved the issue where the Regulatory Compliance Check report was showing "No" at server-level for PCI DSS guideline.
- Fixed an issue where the IP Address Auditing checkbox was unchecked after importing an exported audit setting file.
- Addressed an issue with Audit Events not appearing on SQLCM console when CM repo was hosted on a Case Sensitive SQL instance.
- Solved the issue of multiple alerts being logged for a single event.
- The number of Data and Event alerts is consistent with the number of audit events generated.
- The email alerts have been improved with the appropriate event description.
- Fixed an issue with random disappearance of databases from the audited database list.
|
| Expand |
|---|
|
- SQL Compliance Manager 6.2 improved to determine if an Alert Rule has been configured as 'Email Notification' or 'Email Summary Notification', users no longer are required to edit the alert rule. The rule description has been enhanced to make it convenient to distinguish between the two without the need for alert rule modifications.
- SQL Compliance Manager 6.2 upgraded to provide a CLI command line for registering a server, grooming, archiving, and verifying audit data integrity - version 6.2 is now augmented with CLI for enabling and disabling auditing servers.
- SQL Compliance Manager 6.2 improved and added the number of rows at the end of the reports to ease access to the information contained in each report.
- SQL Compliance Manager 6.2 enhanced security by deploying a strong Advanced Encryption Standard (AES) algorithm to meet the latest high standards of our large enterprise customers. The Advanced Encryption Standard (AES) is an algorithm that uses the same key to encrypt and decrypt protected data. Instead of a single round of encryption, data is put through several rounds of substitution, transposition, and mixing to make it harder to compromise.
|
...
| Expand |
|---|
|
- When running reports in both the Windows Console and Reportings Services you can now select multiple instances in the <Server Instance> dropdown.
- Report Results rows now can be configured to use more than 10K Event Records.
- Added a Horizontal Line in the Reports allowing users to adjust the space that the filters or the report use at any given time. Also added a horizontal scrollbar allowing the user to navigate through the reports.
- Resolved the issue where running the SQL Server Reporting Services listed all users in a long string in the report output when all users are selected.
- Fixed an issue where an error occurred during the setup of the Collection Service account with a password longer than 32 characters during the installation.
- Resolved the issue where auditing via extended events and making changes to the temp-tables caused to "Audit all user tables" when "DML\SELECT Filters" was configured.
- Resolved an issue where the DataChanges table showed a number of eventId ` s with a value of NULL.
- Fixed an issue where the error prompted "An item with the same key has already been added" prompted while loading configuration for the SERVER and occurred when having two databases with the same id but different names.
- Resolved the issue where SSMS native activities were picked up when using Extended Events as the collection method.
- Resolved the issue where an error appeared when opening Excel export of "Regulatory Compliance Check" report in SSRS.
- Fixed the issue where the Audit Events View didn't keep custom columns after the console was restarted.
- Fixed an issue where making changes to the [EventSQL] table was not picked up by the Integrity Check.
- Resolved an issue where the Login Filter was recording the same login multiple times.
- Excel report export no longer rounds up event timestamps.
- Resolved an issue where Trusted User registration was case-sensitive for an auto-registered new database while it was case-insensitive for manually registered databases.
-
|
| Expand |
|---|
|
- SQL Compliance Manager 6.0 extends the capabilities of the current SQL CM Agent to support remote auditing on SQL servers on EC2. Allowing users to add SQL Servers active on the share network location to write/read data and support DBaaS SQL Server Instances. The Cloud Agent consists of the same behavior and functionality as the current SQL Agent, but the RDS agent is a separate agent deployed into the cloud with its own configuration auditing settings.
- SQL Compliance Manager 6.0 adds support for Amazon RDS to audit servers, databases, Sensitive Data, and Activities while alerting and reporting on them. Users can select Amazon RDS as their Server Type when adding a new server in the Specify SQL Server configuration window. According to the selection, SQL CM asks to Specify Connection Credentials for the authentication, and once registered, users can begin auditing the database activity on that server.
- SQL Compliance Manager 6.0 permits the creation of storage accounts to place its components within AWS. In Amazon RDS, users can audit Microsoft SQL Server databases using the built-in SQL Server auditing mechanism. For additional information on Support for SQL Server Audit, visit the SQL Server Audit User Guide.
- Upon upgrading to SQL CM 6.0 or preparing a new installation, SQL Compliance Manager Event Collection Method Capture Default Setting changes to "SQL Server Audit Specifications". All audit logs for 'DML and Select Activities' are captured and filtered properly both for the existing CM architecture and the cloud support platform.
|
...