...
Use the following table to determine which IDERA security level template fits your current security needs and how your environment fits into the overall security maturation model.
IDERA Level | Maturation Level | Security Level | Types of SQL Server Instances | Types of Business | Regulatory Model | Unique Security Checks |
---|
1 - Basic Protection | Beginner | Baseline | Test, development, and low-risk production instances | Services internal groups by hosting data for third-party applications and does not require connections to external clients | MSBPA plus additional checks | - SA account has blank password
- Any SQL Server login has blank password
- Public server role has been granted permissions
|
2 - Balanced Protection | Intermediate | Medium | Average production instances | Services internal and external groups that require external connectivity to hosted data | CIS and MSBPA plus additional checks | - Sysadmins own trustworthy databases
- Public server role has been granted permissions
- File permissions on executables are not acceptable
- SQL logins have weak passwords
|
3 - Strong Protection | Advanced | High | Mission-critical, sensitive, and high-risk production instances | Services internal and external groups by hosting data for Web-based, B2B, B2C, or external clients | CIS, MSBPA, and SRR, plus additional checks and auditing | - Required administrative accounts do not exist
- xp_cmdshell proxy account exists
- SA account is not using password policy
- Public database role has unacceptable permissions
- SSIS database role and stored procedure permissions
- OS version is at acceptable level
|
Scroll pdf ignore |
---|
Excerpt |
---|
SQL Secure manages SQL Server security and permissions. | | Products | Buy | Support | Community | About Us | Resources | |