STIGQter STIGQter: STIG Summary: Oracle Database 11.2g Security Technical Implementation Guide Version: 1 Release: 17 Benchmark Date: 24 Jan 2020: Processes (services, applications, etc.) that connect to the DBMS independently of individual users, must use valid, current DoD-issued PKI certificates for authentication to the DBMS.

DISA Rule

SV-67497r2_rule

Vulnerability Number

V-53281

Group Title

SRG-APP-000177-DB-000069

Rule Version

O112-C2-015501

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

For each such account, use DoD certificate-based authentication.

Check Contents

Review configuration to confirm that accounts used by processes to connect to the DBMS are authenticated using valid, current DoD-issued PKI certificates.

If any such account, other than SYS, is not certificate-based, this is a finding.

Vulnerability Number

V-53281

Documentable

False

Rule Version

O112-C2-015501

Severity Override Guidance

Review configuration to confirm that accounts used by processes to connect to the DBMS are authenticated using valid, current DoD-issued PKI certificates.

If any such account, other than SYS, is not certificate-based, this is a finding.

Check Content Reference

M

Target Key

2669

Comments