The DBMS must generate audit records when successful logons or connections occur.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-206630 | SRG-APP-000503 | SRG-APP-000503-DB-000350 | SV-206630r961824_rule | 2024-12-04 | 4 |
| Description |
|---|
| For completeness of forensic analysis, it is necessary to track who/what (a user or other principal) logs on to the DBMS. |
| ℹ️ Check |
|---|
| Review the DBMS audit settings. If an audit record is not generated each time a user (or other principal) logs on or connects to the DBMS, this is a finding. |
| ✔️ Fix |
|---|
| Configure DBMS audit settings to generate an audit record each time a user (or other principal) logs on or connects to the DBMS. Ensure that the audit record contains the time of the event, the user ID, and session identifier. |