DISA STIG IBM DB2 v10.5 LUW v1r4 Database

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG IBM DB2 v10.5 LUW v1r4 Database

Updated: 10/17/2023

Authority: DISA STIG

Plugin: IBM_DB2DB

Revision: 1.1

Estimated Item Count: 230

File Details

Filename: DISA_STIG_IBM_DB2_v10.5_LUW_v1r4_Database.audit

Size: 868 kB

MD5: 4c4ee81f3e12ebd4b5ed1ac977cba604

SHA256: 0ec775976daf748de9c6841ee98c88d2de43e375bf5f620b143ac1ea67a0e47a

Audit Items

Description	Categories
DB2X-00-000200 - DB2 must limit the number of concurrent sessions to an organization-defined number per user for all accounts and/or account types.	ACCESS CONTROL
DB2X-00-000300 - DB2 must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals - ldap enabled	IDENTIFICATION AND AUTHENTICATION
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - AUTHID
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - AUTHIDTYPE
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - D/ROLE PUBLIC
DB2X-00-000400 - DB2 must enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies - ROLENAME
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - audit policies used	AUDIT AND ACCOUNTABILITY
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - database policies	AUDIT AND ACCOUNTABILITY
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - table policies	AUDIT AND ACCOUNTABILITY
DB2X-00-000600 - DB2 must provide audit record generation capability for DoD-defined auditable events within all DBMS/database components - error types	AUDIT AND ACCOUNTABILITY
DB2X-00-000600 - DB2 must provide audit record generation capability for DoD-defined auditable events within all DBMS/database components - status	AUDIT AND ACCOUNTABILITY
DB2X-00-000700 - DB2 must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - DBAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000700 - DB2 must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - SYSADM_GROUP	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - database policies	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSCOLAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSDBAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSINDEXAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSLIBRARYAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSMODULEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSPASSTHRUAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSPLANAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSROLEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSROUTINEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSCHEMAAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSECURITYLABELACCESS	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSECURITYPOLICYEXEMPTIONS	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSEQUENCEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSSURROGATEAUTHIDS	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSTABAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSTBSPACEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSUSERAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSVARIABLEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSWORKLOADAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSXSROBJECTAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - database policies	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSCOLAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSDBAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSINDEXAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSLIBRARYAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSMODULEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSPASSTHRUAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSPLANAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSROLEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSROUTINEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSCHEMAAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSECURITYLABELACCESS	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSECURITYPOLICYEXEMPTIONS	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSEQUENCEAUTH	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSURROGATEAUTHIDS	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSTABAUTH	AUDIT AND ACCOUNTABILITY

Detections

Analytics

DISA STIG IBM DB2 v10.5 LUW v1r4 Database

Warning! Audit Deprecated

Audit Details

File Details

Audit Items