CCI|CCI-002186

Title

Employ an audited override of automated access control mechanisms under organization-defined conditions by organization-defined roles.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2024

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 14'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 15'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 18'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 20'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 102'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 103'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 104'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 105'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 106'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 107'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 108'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 109'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 110'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 111'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 112'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 113'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 115'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 116'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 117'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 118'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 128'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 129'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 130'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 131'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 132'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 133'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 134'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 135'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 152'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 153'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 170'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 171'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 172'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 173'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 175'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 176'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 177'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL2-00-001600 - SQL Server must ensure that remote sessions that access an organization-defined list of security functions and security-relevant information are audited - 'Event ID 178'	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20

Detections

Analytics

CCI|CCI-002186

Title

Reference Item Details

Audit Items