DISA STIG IBM DB2 v10.5 LUW v1r4 Database

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG IBM DB2 v10.5 LUW v1r4 Database

Updated: 10/17/2023

Authority: DISA STIG

Plugin: IBM_DB2DB

Revision: 1.1

Estimated Item Count: 230

File Details

Filename: DISA_STIG_IBM_DB2_v10.5_LUW_v1r4_Database.audit

Size: 868 kB

MD5: 4c4ee81f3e12ebd4b5ed1ac977cba604
SHA256: 0ec775976daf748de9c6841ee98c88d2de43e375bf5f620b143ac1ea67a0e47a

Audit Items

DescriptionCategories
DB2X-00-000200 - DB2 must limit the number of concurrent sessions to an organization-defined number per user for all accounts and/or account types.

ACCESS CONTROL

DB2X-00-000300 - DB2 must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals - ldap enabled

IDENTIFICATION AND AUTHENTICATION

DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - AUTHID
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - AUTHIDTYPE
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - D/ROLE PUBLIC
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - ROLENAME
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - audit policies used

AUDIT AND ACCOUNTABILITY

DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - database policies

AUDIT AND ACCOUNTABILITY

DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - table policies

AUDIT AND ACCOUNTABILITY

DB2X-00-000600 - DB2 must provide audit record generation capability for DoD-defined auditable events within all DBMS/database components - error types

AUDIT AND ACCOUNTABILITY

DB2X-00-000600 - DB2 must provide audit record generation capability for DoD-defined auditable events within all DBMS/database components - status

AUDIT AND ACCOUNTABILITY

DB2X-00-000700 - DB2 must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - DBAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000700 - DB2 must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - SYSADM_GROUP

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - database policies

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSCOLAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSDBAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSINDEXAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSLIBRARYAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSMODULEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSPASSTHRUAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSPLANAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSROLEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSROUTINEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSCHEMAAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSECURITYLABELACCESS

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSECURITYPOLICYEXEMPTIONS

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSEQUENCEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSURROGATEAUTHIDS

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSTABAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSTBSPACEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSUSERAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSVARIABLEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSWORKLOADAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSXSROBJECTAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - database policies

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSCOLAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSDBAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSINDEXAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSLIBRARYAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSMODULEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSPASSTHRUAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSPLANAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSROLEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSROUTINEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSCHEMAAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSECURITYLABELACCESS

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSECURITYPOLICYEXEMPTIONS

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSEQUENCEAUTH

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSURROGATEAUTHIDS

AUDIT AND ACCOUNTABILITY

DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSTABAUTH

AUDIT AND ACCOUNTABILITY