...
This guide will walk through scanning a non-domain joined Microsoft SQL Database using CIS-CAT Pro Assessor v4. If the Database is domain joined, please see the this guide: Quick Start Guide: MSSQL Database Scanning w/ Integrated Security Quick Start Guide (GUI)
Requirements
Enable SQL Server and Windows Authentication mode
Use a SQL sysadmin account for the assessment (Minimum login permissions for SQL assessment )
...
3. Run the assessment using the GUI or CLI. See this section of the documentation for Workflow steps
Troubleshooting Steps
If the scan is unsuccessful, check the SQL logs for a ’Login failed for user' message that matches the username in your JDBC string. Here’s a way to get SQL logs: https://docs.microsoft.com/en-us/sql/relational-databases/performance/view-the-sql-server-error-log-sql-server-management-studio?view=sql-server-ver15
| Note |
|---|
See the this section of the documentation for more information on JDBC string structure: |
...
Copyright © 2022 Center for Internet Security® Privacy Policy
...