| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-206527 | CAT II | MONT-DB-002 | Database Security Requirements Guide | The DBMS must initiate session auditing upon start... | - | |||
Check TextReview DBMS vendor documentation to determine whether the DBMS software is capable of session auditing. If the DBMS is not capable of session auditing and a third party product is not being used for session level auditing, this is a finding. If the DBMS is capable of session level auditing and specific session audits are currently defined but session auditing is not enabled; or if a third-party product is available for session auditing and specific session audits are currently defined but session auditing is not enabled, this is a finding. Fix TextDeploy a DBMS capable of session auditing. Configure the DBMS software or third-party product to enable session auditing. CommentsSection ‘Auditing Individual Connections’ on Page 2 of reference document SQL Anywhere 17- Database Activity Audit.pdf specifies that connection-specific auditing option is enabled by default once auditing is enabled.
Source: Montford Point ShipCLIP DB V4R4.ckl
Scan Date: 2026-03-06T12:50:21.809591
Technology Area: Database Review
|
||||||||