STIGQter: STIG Summary: MS SQL Server 2014 Instance Security Technical Implementation Guide Version: 1 Release: 10 Benchmark Date: 24 Apr 2020:

SQL Server must allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.

DISA Rule

SV-82381r1_rule

Vulnerability Number

V-67891

Group Title

SRG-APP-000357-DB-000316

Rule Version

SQL4-00-033000

Severity

CAT II

CCI(s)

• CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

10

Fix Recommendation

Allocate sufficient audit storage space to support peak demand.

Check Contents

Investigate whether there have been any incidents where the system ran out of audit log space (to include traces used for audit purposes) since the last time the space was allocated or other corrective measures were taken.

If there have been, this is a finding.

Vulnerability Number

V-67891

Documentable

False

Rule Version

SQL4-00-033000

Severity Override Guidance

Investigate whether there have been any incidents where the system ran out of audit log space (to include traces used for audit purposes) since the last time the space was allocated or other corrective measures were taken.

If there have been, this is a finding.

Check Content Reference

M

Target Key

2639

Comments