SQL2-00-018300 - SQL Server software libraries must be periodically backed up.

Information

SQL Server backups are a critical step in maintaining data assurance and availability.

System-level information includes system-state information, operating system and application software, and licenses.

Backups shall be consistent with organization-defined recovery time and recovery point objectives.

SQL Server depends upon the availability and integrity of its software libraries. Without backups, compromise or loss of the software libraries can prevent a successful recovery of SQL Server operations.

A mixture of full and incremental server-level backups by a third-party tool that backs up those software library directories would satisfy this requirement.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Ensure inclusion of all SQL Server software libraries into the backup process.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_SQL_Server_2012_V1R20_STIG.zip

Item Details

Category: CONTINGENCY PLANNING

References: 800-53|CP-9b., CAT|II, CCI|CCI-000537, Rule-ID|SV-53279r2_rule, STIG-ID|SQL2-00-018300, Vuln-ID|V-40925

Plugin: MS_SQLDB

Control ID: 8e8ddf2454fb69961fde864886b1f2d24fb26e65aa8a07225e1dbd639e3ee5d2