Page History
...
Warning |
---|
IDERA, Inc. customers have the sole responsibility to ensure their are solely responsible for ensuring compliance with the laws and standards affecting their business. IDERA, Inc. does not represent that its products or services ensures ensure that customer is in compliance with any law. It is the responsibility of the customer to obtain legal, accounting, or audit counsel as to the necessary business practices and actions to comply with such laws. |
...
6.
...
3 New Features
Security Enhancements
Anchor | ||
---|---|---|
|
...
|
...
|
...
IDERA SQL Compliance Manager 5.5 includes updates on PCI DSS and HIPAA regulation guidelines templates. It also includes new sets of regulation guidelines, allowing users to perform data audits according the corresponding security rules.
The new regulation guidelines are the following:
- Defense Information Security Agency (DISA STIG)
- North American Electric Reliability Corporation (NERC)
- Center for Internet Security (CIS)
- Sarbanes-Oxley Act (SOX)
- Family Educational Rights and Privacy Act (FERPA)
For more information about this feature, see Comply with specific Regulations.
Auditing available via SQL Server Audit Logs
IDERA SQL Compliance Manager 5.5 includes the ability to track your alerts via SQL Server Audit Logs for Agents running on SQL Server 2017 or above. Users can now decide if they want to track events via Trace Files, Extended Events (SQL Server 2012 and above) or Audit Logs (SQL Server 2017 or above). This new feature is supported in both the Web console and the Windows Management Console.
For more information about this feature, see Using SQL Server Audit Logs.
...
IDERA SQL Compliance Manager 5.5 includes the row count feature which captures and reports on the frequency that users access Event types and SQL Statements, alerting database administrators about suspicious behavior.
...
6.3 release delivers security permissions based on the least privilege principle (as opposed to permissions based on standard user roles such as sysadmin) to further enhance the data security per user within the product.
6.3 Fixed Issues
-
Fixed an issue where DDL events were not being captured for server-level privilege users configured through a domain group.Anchor SQLCM-6883 SQLCM-6883 -
Resolved the issue where the Regulatory Compliance Check report was showing "No" at server-level for PCI DSS guidelineAnchor SQLCM-6364 SQLCM-6364
For more information about this feature, see Control data access - Row count.
Enable SQL Extended Events Auditing from the Windows Management Console
SQL Extended Events auditing can now be enabled from both the Web Console and the Windows Management Console.
...
- .
Anchor SQLCM-
...
6860 SQLCM-
...
IDERA SQL Compliance Manager 5.5 now supports installation of the Database Repository for Collection Server, deployment of the SQL Compliance Manager Agent, and auditing events for SQL Server 2017.
...
Fixed an issue where the IP Address Auditing checkbox was unchecked after importing an exported audit setting file.6860
Anchor SQLCM-
...
6855 SQLCM-
...
The user can install IDERA SQL Compliance Manager 5.5 and deploy the SQL Compliance Manager Agent in Windows Server 2016.
For more information, see Software requirements.
Addressed an issue with Audit Events not appearing on SQLCM console when CM repo was hosted on a Case Sensitive SQL instance.6855
Anchor SQLCM-
...
6816 SQLCM-
...
IDERA SQL Compliance Manager 5.5 allows users to create Sensitive Column data sets that can be monitored as a group of sensitive information. Users can also add Sensitive Column data sets to any regulation guideline applied in servers or databases.
For more information, see Sensitive Column window.
...
IDERA SQL Compliance Manager 5.5 allows users to add Host Name, Login, and Before-After data values to the alert message templates.
Agent Deployment method
IDERA SQL Compliance Manager 5.5 allows users to see the agent deployment method in the Registered SQL Servers window of the Administration view.
...
IDERA SQL Compliance Manager 5.5 allows users to install and/or upgrade in a non default drive path.
5.5 Fixed issues
Administration issues
...
Solved the issue of multiple alerts being logged for a single event.6816 - The number of Data and Event alerts is consistent with the number of audit events generated.
- The email alerts have been improved with the appropriate event description.
For more information about new features and fixed issues in version 6.3, see Previous features and fixed issues.
...
Auditing issues
...
Reporting issues
...
Scroll pdf ignore | ||
---|---|---|
SQL Compliance Manager audits all activity on your server. Learn more > > |
Scroll Pagebreak |
---|