STIGQter: STIG Summary: MS SQL Server 2016 Instance Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Windows must enforce access restrictions associated with changes to the configuration of the SQL Server instance.

DISA Rule

SV-213988r617437_rule

Vulnerability Number

V-213988

Group Title

SRG-APP-000380-DB-000360

Rule Version

SQL6-D0-011500

Severity

CAT II

CCI(s)

• CCI-001813 - The information system enforces access restrictions.

Weight

10

Fix Recommendation

Remove users from the local Administrators group who are not authorized.

Check Contents

Obtain a list of users who have privileged access to the server via the local Administrators group.

Launch lusrmgr.msc
Select Groups
Double-click Administrators

Alternatively, execute the following command in PowerShell:

net localgroup administrators

Check the server documentation to verify the users returned are authorized.

If the users are not documented and authorized, this is a finding.

Vulnerability Number

V-213988

Documentable

False

Rule Version

SQL6-D0-011500

Severity Override Guidance

Obtain a list of users who have privileged access to the server via the local Administrators group.

Launch lusrmgr.msc
Select Groups
Double-click Administrators

Alternatively, execute the following command in PowerShell:

net localgroup administrators

Check the server documentation to verify the users returned are authorized.

If the users are not documented and authorized, this is a finding.

Check Content Reference

M

Target Key

3993

Comments