Detections
Analytics

CIS SQL 2005 v2.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS SQL 2005 v2.0

Updated: 2/1/2017

Authority: CIS

Plugin: Windows

Revision: 1.4

Estimated Item Count: 77

Audit Items

DescriptionCategories
1.1.1 SQL Servers accessed via Internet
1.1.4 Dedicated Server
1.1.6 SQL Server Active Directory Helper
1.1.7 Permission to start SQL Writer
1.2.2 SQL Server Agent Service Account
1.2.3 Local Administrators group membership
1.2.4 Domain service account group membership
1.3.1 Log on as a service
1.3.2 Act as part of the operating system
1.3.3 Log on as a batch job
1.3.4 Replace a process-level token
1.3.5 Bypass traverse checking
1.3.6 Adjust memory quotas for a process
1.4.1 Log on as a service
1.4.2 Act as part of the operating system
1.4.3 Log on as a batch job
1.4.4 Replace a process-level token
1.4.5 Bypass traverse checking
1.4.6 Adjust memory quotas for a process
1.5.1 Log on as a service
1.5.2 Bypass traverse checking
1.5.3 Create global objects
1.5.4 Impersonate a client after authentication
1.5.5 SQL Server Agent Proxy accounts
1.6.1 SQL Server install platform
1.6.2 Patches and hot fixes
1.6.3 SQL Server Ports
1.6.4 Naming conventions
1.6.5 SQL Server instances
1.6.6 Authentication mode
1.6.13 Separate partitions
1.6.13 Separate partitions - 'Program Files'
1.6.13 Separate partitions - 'SQL data files'
1.6.13 Separate partitions - 'SQL Log files'
1.7.1 SQL Server Configuration Manager
1.7.2 Auto Restart SQL Server
1.7.3 Auto Restart SQL Server Agent
1.7.4 Distributed Transaction Coordinator
1.7.7 Backup/Restore from tape timeout
1.8.2 Trace Messages
1.13.7 SQL Server Event Forwarding
1.13.8 SQL Server Browser Service
1.14.1 SQL Server install directory permissions
1.14.2 Restrict access to backup files to System Administrators
1.15.1 Auditing - General
1.15.2 SQL Server Properties - Security Tab
1.15.3 SQL Server Logs - 'number of logs retained > 6'
1.15.4 SQL Profiler
1.16.6 Restrict access to backup files to System Administrators
1.16.8 Run the Microsoft Baseline Security Analyzer