An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.04.2-01be-daa4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.04.2-01be-daa4
Open sidebar
Navigate
Top
Search
Checks (
101
)
Print
Changes
Pages (
2/7
)
MS SQL Server 2016 Instance STIG
MS SQL Server 2016 Instance Security Technical Implementation Guide
v3 r3 (Released Jan. 30, 2025)
v3 r2 (Released Oct. 24, 2024)
v3 r1 (Released July 24, 2024)
v2 r12 (Released April 24, 2024)
v2 r11 (Released Jan. 24, 2024)
v2 r10 (Released July 27, 2023)
v2 r9 (Released April 27, 2023)
v2 r8 (Released Oct. 26, 2022)
v2 r7 (Released April 27, 2022)
v2 r6 (Released Jan. 27, 2022)
v2 r5 (Released Oct. 27, 2021)
v2 r4 (Released July 23, 2021)
v2 r3 (Released April 23, 2021)
v2 r2 (Released Jan. 22, 2021)
v2 r1 (Released Oct. 23, 2020)
v1 r10 (Released July 24, 2020)
v1 r9 (Released April 24, 2020)
v1 r8 (Released Jan. 24, 2020)
v1 r7 (Released Oct. 25, 2019)
v1 r6 (Released July 26, 2019)
v1 r5 (Released April 26, 2019)
v1 r4 (Released Jan. 25, 2019)
v1 r3 (Released Oct. 26, 2018)
v1 r2 (Released July 27, 2018)
v1 r1 (Released March 9, 2018)
ID
Vuln ID
Title
Cat
Status
SQL6-D0-006300
V-213948
SQL Server must protect its audit configuration from authorized and unauthorized access and modification.
Cat II
SQL6-D0-006500
V-213950
SQL Server must limit privileges to change software modules and links to software external to SQL Server.
Cat II
SQL6-D0-006600
V-213951
SQL Server must limit privileges to change software modules, to include stored procedures, functions and triggers, and links to software external to SQL Server.
Cat II
SQL6-D0-006700
V-213952
SQL Server software installation account must be restricted to authorized users.
Cat I
SQL6-D0-006800
V-213953
Database software, including DBMS configuration files, must be stored in dedicated directories, separate from the host OS and other applications.
Cat II
SQL6-D0-006900
V-213954
Default demonstration and sample databases, database objects, and applications must be removed.
Cat II
SQL6-D0-007000
V-213955
Unused database components, DBMS software, and database objects must be removed.
Cat II
SQL6-D0-007100
V-213956
Unused database components that are integrated in SQL Server and cannot be uninstalled must be disabled.
Cat II
SQL6-D0-007200
V-213957
Access to xp_cmdshell must be disabled, unless specifically required and approved.
Cat II
SQL6-D0-007300
V-213958
Access to CLR code must be disabled or restricted, unless specifically required and approved.
Cat II
SQL6-D0-007400
V-213959
Access to Non-Standard extended stored procedures must be disabled or restricted, unless specifically required and approved.
Cat II
SQL6-D0-007500
V-213960
Access to linked servers must be disabled or restricted, unless specifically required and approved.
Cat II
SQL6-D0-007600
V-213961
SQL Server must be configured to prohibit or restrict the use of organization-defined protocols as defined in the PPSM CAL and vulnerability assessments.
Cat II
SQL6-D0-007700
V-213962
SQL Server must be configured to prohibit or restrict the use of organization-defined ports, as defined in the PPSM CAL and vulnerability assessments.
Cat II
SQL6-D0-007800
V-213963
SQL Server must uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users).
Cat II
Prev
1
2
3
4
5
6
...7
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.