TNS SQL Server 2008 OS Best Practices

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: TNS SQL Server 2008 OS Best Practices

Updated: 2/1/2017

Authority: TNS

Plugin: Windows

Revision: 1.3

Estimated Item Count: 71

Audit Items

Description	Categories
Access to SQL Server
Application Information (Appinfo)
Application Layer Gateway (ALG)
ASP.NET State Service (aspnet_state)
Audit Login Attempts - 'AuditLevel = 2 or 3'
Authentication mode
Computer Browser (browser)
Dedicated Admin Connection (DAC) Port
Dedicated Server
Dedicated SQL Server Service Account
Disable SQL Server Browser Service
Disable Unnecessary Protocols - 'Named Pipes protocol is disabled'
Disable Unnecessary Protocols - 'Shared Memory protocol is enabled'
Disable Unnecessary Protocols - 'TCP/IP protocol is disabled'
Disable Unnecessary Protocols - 'VIA protocol is disabled'
Disable Unused Network Protocols
Distributed Link Tracking Client (TrkWks)
Distributed Transaction Coordinator (MsDtc)
Domain Controller Installation
Encryption
Function Discovery Provider Host (fdpHost)
Function Discovery Resource Publication (FDResPub)
Grant the SQL Server Agent Account Necessary Privileges - 'Adjust memory quotas for a process'
Grant the SQL Server Agent Account Necessary Privileges - 'Bypass traverse checking'
Grant the SQL Server Agent Account Necessary Privileges - 'Log on as a service'
Grant the SQL Server Agent Account Necessary Privileges - 'Replace a process-level token'
Grant the SQL Server Integration Services Service Account Only Necessary Privileges - 'Log on as a service'
Grant the SQL Server Service Account Only Necessary Privileges - 'Adjust memory quotas for a process'
Grant the SQL Server Service Account Only Necessary Privileges - 'Bypass traverse checking'
Grant the SQL Server Service Account Only Necessary Privileges - 'Lock Pages in Memory'
Grant the SQL Server Service Account Only Necessary Privileges - 'Log on as a service'
Grant the SQL Server Service Account Only Necessary Privileges - 'Perform Volume Maintenance Tasks'
Grant the SQL Server Service Account Only Necessary Privileges - 'Replace a process-level token'
Group Policy
Instance Naming Conventions
Internet Connection Sharing (ICS) (SharedAccess)
Internet Explorer Enhanced Security Configuration (IE ESC) - 'IEHardenAdmin is enabled'
Internet Explorer Enhanced Security Configuration (IE ESC) - 'IEHardenUser is enabled'
Link-Layer Topology Discovery Mapper (lltdsvc)
Local users group membership
MSSQL Server Service Account
Multimedia Class Scheduler (MMCSS)
Operating System Choice
Permissions on OS tools - 'cmd.exe'
Permissions on OS tools - 'explorer.exe'
Permissions on OS tools - 'System directory'
Permissions on OS tools - 'System32 directory'
Print Spooler (Spooler)
Remote Access Auto Connection Manager (RasAuto)
Remote Access Connection Manager (RasMan)

Detections

Analytics

TNS SQL Server 2008 OS Best Practices

Warning! Audit Deprecated

Audit Details

Audit Items