Scribd Logo
Upload

Welcome to Scribd!

  • DCR For 10-130-240-42-26112019

    Uploaded by

    Azhar Mohd Ghazali
    5 views8 pages

    Original Title

    DCR for 10-130-240-42-26112019.docx

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    5 views8 pages

    DCR For 10-130-240-42-26112019

    Uploaded by

    Azhar Mohd Ghazali

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 8

    DATABASE CONFIGURATION REVIEW (DCR)

    REMEDIATION REPORT
    For
    KERTIH TERMINALS SDN BHD (KTSB)
    VERSION 1.0

    PRIVATE & CONFIDENTIAL

    Date: 26th NOV 2019


    Prepared By :
    Ipconfig, SQL version and account privileges to access the server.

    For this remedy action , we used ID : KTSBOW/admin and password : it@ktsb

    Target instances are as below :

    PRIVATE AND CONFIDENTIAL Page 2 of 8


    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019
    PRIVATE AND CONFIDENTIAL Page 3 of 8
    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019
    2 Surface Area Reduction

    2.6 Ensure remote access server configuration is set to 0

    No need to apply this settings since vendor inform that their client is using this method/policy to access
    the server.

    2.12 Ensure Hide Instance option is set to ‘YES’ for SQL instances

    2.14 Ensure ‘sa’ login has been renamed

    PRIVATE AND CONFIDENTIAL Page 4 of 8


    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019
    2.17 Ensure no login exists with the name ‘sa’

    Applied since renamed sa to ktsbsa

    3 Authentication and Authorization

    3.1 Ensure server authentication mode is set to windows auth mode

    Original settings

    Changes to

    3.9 Ensure WINDOWS BUILTIN groups are not SQL Logins

    Not necessary since the built in is Administrator privileges.

    4. Password policies

    4.3 Ensure check policy is set to ON

    Original

    PRIVATE AND CONFIDENTIAL Page 5 of 8


    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019
    Alter login [ss] with check_policy=ON

    PRIVATE AND CONFIDENTIAL Page 6 of 8


    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019
    REMARKS :

    Only applicable for SQL auth mode, NOT for WINDOWS login mode.

    5 Auditing & Logging


    5.1 Enusre max num of error log files is set to greater than or equal to 20

    Original settings

    Changes to 20

    5.3 Ensure Login Auditing is set to 2

    PRIVATE AND CONFIDENTIAL Page 7 of 8


    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019
    6 Application Development

    6.2 Ensure CLR Assembly is set to SAFE

    Not Necessary to do this tasks

    REMARKS

    Success stop and start SQL server and agents 26 nov 2019 3:50pm

    PRIVATE AND CONFIDENTIAL Page 8 of 8


    Kertih Terminals Sdn Bhd (KTSB)– Database Configuration Review (DCR) Final Report v0.3
    Prepared/Updated by: Wan Solihin Wan Sidek
    Date: 10th May 2019

    You might also like