UCF STIG Viewer Logo

Configuration management applications must employ automated mechanisms to centrally manage configuration settings.


Overview

Finding ID Version Rule ID IA Controls Severity
V-32417 SRG-APP-000135-DB-NA SV-42754r1_rule Medium
Description
Configuration settings are the configurable security-related parameters of information technology products that are part of the information system. Security-related parameters are those parameters impacting the security state of the system including parameters related to meeting other security control requirements. Security-related parameters include: registry settings; account, file, and directory settings (i.e., permissions); and settings for services, ports, protocols, and remote connections. Rather than visiting each and every system when making application configuration changes, organizations will employ automated tools that can make changes across all systems. This greatly increases efficiency and manageability of systems and applications in a large scale environment. To support this requirement, configuration management applications will employ automated mechanisms to centrally manage configuration settings and applications, in general, will ensure that they do not hinder the use of such tools. This requirement is specific to configuration management applications and does not apply to databases.
STIG Date
Database Security Requirements Guide 2012-07-02

Details

Check Text ( C-40859r1_chk )
This check is NA for databases.
Fix Text (F-36332r1_fix)
This fix is NA for databases.