STIGQter: STIG Summary: Database Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 22 Jan 2021:

The DBMS must uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users).

DISA Rule

SV-206554r617447_rule

Vulnerability Number

V-206554

Group Title

SRG-APP-000148

Rule Version

SRG-APP-000148-DB-000103

Severity

CAT II

CCI(s)

• CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

10

Fix Recommendation

Configure DBMS settings to uniquely identify and authenticate all organizational users who log on/connect to the system.

Check Contents

Review DBMS settings to determine whether organizational users are uniquely identified and authenticated when logging on/connecting to the system.

If organizational users are not uniquely identified and authenticated, this is a finding.

Vulnerability Number

V-206554

Documentable

False

Rule Version

SRG-APP-000148-DB-000103

Severity Override Guidance

Review DBMS settings to determine whether organizational users are uniquely identified and authenticated when logging on/connecting to the system.

If organizational users are not uniquely identified and authenticated, this is a finding.

Check Content Reference

M

Target Key

2902

Comments