Support for Microsoft SQL Server
Foundational Security support is now available for Microsoft SQL Server running in Amazon RDS, Amazon EC2, and on premises.
This functionality includes 10 additional security rules out-of-the-box that can be used to automate configuration checks for items such as:
-
Ensure 'Remote Access' Server Configuration Option is set to '0' — a CIS Benchmarks standard that helps protect against a Denial-of-Service attack on remote servers.
-
Ensure the 'sa' Login Account has been renamed — a CIS Benchmarks standard that’s intended to help prevent successful password-guessing and brute-force attacks against the sa login.
To access the new rules, select “Foundational Security” in the main menu, “Inventory” in the sub-menu, and then “Security Rules”.
Also of note, the “User Assessment” report summarizes users with elevated privileges for SQL Server in addition to providing more detailed data on all users of SQL Server. To access this report, select "Foundational Security" in the main menu, "Reports" in the submenu, then "User Assessment".
Don’t forget that you can filter both “Inventory” and “Reports” based on “Engine” type.
