Detections
Analytics

CIS MySQL 8.0 Community Database L2 v1.1.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS MySQL 8.0 Community Database L2 v1.1.0

Updated: 12/16/2025

Authority: CIS

Plugin: MySQLDB

Revision: 1.1

Estimated Item Count: 18

File Details

Filename: CIS_MySQL_8.0_Community_Benchmark_v1.1.0_Level_2_Database.audit

Size: 38.9 kB

MD5: 2fce7d899de9af95f4a933c464d019f7
SHA256: 5b3ea348875d7cca625748d751fad9cbd0528b55a3df4e79f109ffb8e1319df5

Audit Items

DescriptionCategories
2.1.4 Point-in-Time Recovery
2.2.1 Ensure Binary and Relay Logs are Encrypted
2.9 Require Current Password for Password Reset
2.10 Use Dual Passwords to Enable Higher Frequency Password Rotation
2.11 Lock Out Accounts if Not Currently in Use
2.12 Ensure AES Encryption Mode for AES_ENCRYPT/AES_DECRYPT is Configured Correctly
2.13 Ensure Socket Peer-Credential Authentication is Used Appropriately
2.14 Ensure MySQL is Bound to an IP Address
2.15 Limit Accepted Transport Layer Security (TLS) Versions
2.16 Require Client-Side Certificates (X.509)
2.17 Ensure Only Approved Ciphers are Used
4.9 Ensure 'sql_mode' Contains 'STRICT_ALL_TABLES'
4.10 Use MySQL TDE for At-Rest Data Encryption
5.3 Ensure 'PROCESS' is Not Granted to Non-Administrative Users
6.3 Ensure 'log_error_verbosity' is Set to '2'
9.3 Ensure 'master_info_repository' is Set to 'TABLE'
10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB Cluster
CIS_MySQL_8.0_Community_Benchmark_v1.1.0_Level_2_Database.audit from CIS Oracle MySQL 8.0 Community Edition Benchmark