Revision 1.6Feb 13, 2023
Functional Update
- 2.11 Ensure SQL Server is configured to use non-standard ports
- 3.2 Ensure CONNECT permissions on the 'guest' user is Revoked within all SQL Server databases excluding the master, msdb and tempdb
- 3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases
- 3.4 Ensure SQL Authentication is not used in contained databases
- 7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases
- 7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databases