Page History

IDERA IDERA SQL Secure provides the following new features and fixed issues.

...

4.

...

4 New features

...

Added SQL Server file import

Users now can import a .csv file containing the SQL Servers they want to import for registration in SQL Secure. This is an important feature for environments having more than a few SQL Servers as it allows you to bulk import data into SQL Secure. For more information about this feature, see Import SQL Server instances.

Added tags for easier server management

SQL Secure now features server group tags to allow you to more easily manage your SQL Server instance snapshots. You can select tags when registering a SQL Server or simply add a tag to your existing instances. Tags allow you to select a specific group of SQL Servers rather than selecting servers one by one. For more information about server group tags, see Manage server group tags.

Added suspect SQL Server logins report

The new Suspect SQL Logins report displays all of the suspect SQL Server Accounts that do not have any assigned permissions, i.e. databases, objects, or server files. For more information about reporting, see Report on SQL Server Security.

Expanded Risk Assessment reporting

IDERA SQL Secure 3.0 includes multiple additions and modifications to the existing Security Checks in the Risk Assessment report. These new checks include:

• Access
  
  • Files on Drive Using Not Using NTFS. Updated to support ReFS for SQL Server 2016.
  • Supported Operating Systems. Removed support for Microsoft Windows 2003 and added support for Windows 2012, Windows 2012 R2, and Windows 2016.
  • SQL Jobs and Agent. Updated to flag any case where a proxy account is not in use.
  • Encryption Methods. Updated to flag any case where unsupported encryption methods are in use. Note that beginning with SQL Server 2016, all algorithms other than AES_128, AES_192, and AES_256 are deprecated.
  • Certificate private keys were never exported. Verifies that Certificate private keys are exported.
    
• Configuration
  • Linked Server. Checks to see if there are linked servers, and then checks to see if the linked server is running as a member of the sysadmin group. Linked servers can lead to performance issues and running them using sysadmin privileges can leave a database vulnerable to corruption.
  • SQL Server Version. Checks to make sure a supported version of SQL Server is in use. Flags any case where an unsupported SQL Server version is in use.
  • Full Text Search Service Running. Checks to make sure that this service is running on the selected instance.
  • Unauthorized Accounts Check. Updated to include checks for roles beyond sysadmin, including the Separation of Duties roles in SQL Server 2014 and the roles surrounding encryption for SQL Server 2016.
  • Other General Domain Accounts Check. Update to include checks for general domain accounts such as domain Users, Everyone, and Authenticated Users added to the selected instance.
• Surface
  • SQL Server Available for Browsing. Updated the name of this check to SQL Server Browser Running.

For more information about using reports within SQL Secure, see Report on SQL Server Security.

3.0 Fixed issues

The following issues are fixed in IDERA SQL Secure:

...

• Anchor
  SQLSECU-2907 SQLSECU-2907

  The Snapshot Comparison report settings now include a checkbox that allows the report to show the object comparison based on:
  • Current logic.
  • Updated logic to ignore restored objects that are identical to the previous snapshot.

• Anchor
  SQLSECU-2190 SQLSECU-2190

  The Snapshot Comparison report now shows a more detailed view of the user level access changes that occurred between two different snapshots.

4.4 Fixed issues

• Anchor
  SQLSECU-2799 SQLSECU-2799

  The Snapshot May Be Missing Data security check was incorrectly reported for SQL Server 2016 and SQL Server 2017. This is now fixed.

...