| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-206636 | CAT II | MONT-DB-002 | Database Security Requirements Guide | The DBMS must be able to generate audit records wh... | - | |||
Check TextReview DBMS documentation to verify that administrative users can specify database objects for which access must be audited and can specify which kinds of access must be audited. If the DBMS is not capable of this, this is a finding. Review system documentation to determine whether the application owner has specified database objects (tables, views, procedures, functions, etc.) for which access must be audited. Review the DBMS/database security and audit settings to verify that the specified access to the specified objects is audited. If not, this is a finding. Fix TextDeploy a DBMS capable of producing the required audit records when object access occurs. Configure audit settings to create audit records when the specified access to the specified objects occurs. CommentsPage 2 of reference document SQL Anywhere 17 - Auditing Options.pdf species the types of auditing events captured in the audit log. A setting of ‘all’ includes auditing of successful permission checks on objects which translates to a successful access to an object.
Source: Montford Point ShipCLIP DB V4R4.ckl
Scan Date: 2026-03-06T12:50:21.809591
Technology Area: Database Review
|
||||||||