An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2026
Xylok, LLC
Version: releases-v2026.03.1 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2026
Xylok, LLC
Version: releases-v2026.03.1 - rmfrev5
Open sidebar
Navigate
Top
Search
Checks (
84
)
Print
Changes
Pages (
4/6
)
MS SQL Server 2016 Instance STIG
MS SQL Server 2016 Instance Security Technical Implementation Guide
v3 r6 (Released Jan. 5, 2026)
v3 r5 (Released July 2, 2025)
v3 r4 (Released April 2, 2025)
v3 r3 (Released Jan. 30, 2025)
v3 r2 (Released Oct. 24, 2024)
v3 r1 (Released July 24, 2024)
v2 r12 (Released April 24, 2024)
v2 r11 (Released Jan. 24, 2024)
v2 r10 (Released July 27, 2023)
v2 r9 (Released April 27, 2023)
v2 r8 (Released Oct. 26, 2022)
v2 r7 (Released April 27, 2022)
v2 r6 (Released Jan. 27, 2022)
v2 r5 (Released Oct. 27, 2021)
v2 r4 (Released July 23, 2021)
v2 r3 (Released April 23, 2021)
v2 r2 (Released Jan. 22, 2021)
v2 r1 (Released Oct. 23, 2020)
v1 r10 (Released July 24, 2020)
v1 r9 (Released April 24, 2020)
v1 r8 (Released Jan. 24, 2020)
v1 r7 (Released Oct. 25, 2019)
v1 r6 (Released July 26, 2019)
v1 r5 (Released April 26, 2019)
v1 r4 (Released Jan. 25, 2019)
v1 r3 (Released Oct. 26, 2018)
v1 r2 (Released July 27, 2018)
v1 r1 (Released March 9, 2018)
ID
Vuln ID
Title
Cat
Status
SQL6-D0-011000
V-213984
SQL Server must provide a warning to appropriate support staff when allocated audit record storage volume reaches 75% of maximum audit record storage capacity.
Cat II
SQL6-D0-011100
V-213985
SQL Server must provide an immediate real-time alert to appropriate support staff of all audit log failures.
Cat II
SQL6-D0-011200
V-213986
SQL Server must record time stamps in audit records and application data that can be mapped to Coordinated Universal Time (UTC, formerly GMT).
Cat II
SQL6-D0-011400
V-213987
SQL Server must enforce access restrictions associated with changes to the configuration of the instance.
Cat II
SQL6-D0-011500
V-213988
Windows must enforce access restrictions associated with changes to the configuration of the SQL Server instance.
Cat II
SQL6-D0-011800
V-213989
SQL Server must produce audit records when attempts to modify SQL Server configuration and privileges occur within the database(s).
Cat II
SQL6-D0-012300
V-213991
SQL Server must maintain a separate execution domain for each executing process.
Cat II
SQL6-D0-012400
V-213992
SQL Server services must be configured to run under unique dedicated user accounts.
Cat II
SQL6-D0-012700
V-213993
When updates are applied to SQL Server software, any software components that have been replaced or made unnecessary must be removed.
Cat II
SQL6-D0-012800
V-213994
Security-relevant software updates to SQL Server must be installed within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, and STIGs).
Cat II
SQL6-D0-013400
V-214000
SQL Server must generate audit records when successful and unsuccessful attempts to add privileges/permissions occur.
Cat II
SQL6-D0-013600
V-214002
SQL Server must generate audit records when successful and unsuccessful attempts to modify privileges/permissions occur.
Cat II
SQL6-D0-013800
V-214004
SQL Server must generate audit records when successful and unsuccessful attempts to modify security objects occur.
Cat II
SQL6-D0-014200
V-214008
SQL Server must generate audit records when successful and unsuccessful attempts to delete privileges/permissions occur.
Cat II
SQL6-D0-014800
V-214014
SQL Server must generate audit records when successful and unsuccessful logons or connection attempts occur.
Cat II
Prev
1
2
3
4
5
6
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.