Free DISA STIG and SRG Library | Vaulted
  1. Security Guide Library
  2. Database Security Requirements Guide
  3. V-58051

V-58051

The DBMS must provide centralized configuration of the content to be captured in audit records generated by all components of the DBMS.

Finding ID
SRG-APP-000356-DB-000315
Rule ID
SV-72481r1_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-APP-000356-DB-000315
CCI
CCI-001844
Target Key
(None)
Documentable
No
Discussion

If the configuration of the DBMS's auditing is spread across multiple locations in the database management software, or across multiple commands, only loosely related, it is harder to use and takes longer to reconfigure in response to events. The DBMS must provide a unified tool for audit configuration.

Fix Text

Deploy a DBMS that provides a unified tool for audit configuration.

Check Content

Review DBMS vendor documentation. If the DBMS does not provide a unified tool for audit configuration, this is a finding.

Vaulted is more than a library.

SIGN UP FOR FREE