<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=Windows-1252">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:Helvetica;
panose-1:0 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 5 2 4 2 4 2 2 3;}
@font-face
{font-family:Roboto;
panose-1:2 0 0 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
mso-add-space:auto;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.MsoListParagraphCxSpFirst, li.MsoListParagraphCxSpFirst, div.MsoListParagraphCxSpFirst
{mso-style-priority:34;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
mso-add-space:auto;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.MsoListParagraphCxSpMiddle, li.MsoListParagraphCxSpMiddle, div.MsoListParagraphCxSpMiddle
{mso-style-priority:34;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
mso-add-space:auto;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.MsoListParagraphCxSpLast, li.MsoListParagraphCxSpLast, div.MsoListParagraphCxSpLast
{mso-style-priority:34;
mso-style-type:export-only;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
mso-add-space:auto;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:439840870;
mso-list-type:hybrid;
mso-list-template-ids:-1801581706 1074331649 1074331651 1074331653 1074331649 1074331651 1074331653 1074331649 1074331651 1074331653;}
@list l0:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l1
{mso-list-id:552737507;
mso-list-template-ids:1290416204;}
@list l1:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:"Courier New";
mso-bidi-font-family:"Times New Roman";}
@list l1:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l1:level4
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l1:level5
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l1:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l1:level7
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l1:level8
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l1:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l2
{mso-list-id:995690966;
mso-list-type:hybrid;
mso-list-template-ids:597690030 1074331649 1074331651 1074331653 1074331649 1074331651 1074331653 1074331649 1074331651 1074331653;}
@list l2:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7 ;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style>
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal" style="text-autospace:none"><strong><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">Product:
</span></strong><b><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222"><br>
</span></b><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">BigFix Compliance</span><span style="font-size:10.0pt"><o:p></o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><b><span style="font-size:10.0pt"><o:p> </o:p></span></b></p>
<p class="MsoNormal" style="text-autospace:none"><strong><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">Title:</span></strong><b><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222"><br>
</span></b><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:black">Updated CIS Checklist for MSSQL Server with bug fixes<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt"><br>
</span><strong><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">Published Sites:</span></strong><b><span lang="EN-IN" style="font-size:10.0pt">
</span></b><span style="font-size:10.0pt;color:#2F2F2F"><br>
</span><span style="font-size:11.5pt;font-family:"Segoe UI",sans-serif">CIS Checklist for MS SQL Server 2012 DB Engine</span><span style="font-family:Roboto;letter-spacing:.1pt">,</span><span style="font-size:10.5pt;font-family:Helvetica;color:#222222;background:white">
</span><span style="font-family:Roboto;letter-spacing:.1pt">site version 10<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.5pt;font-family:"Segoe UI",sans-serif">CIS Checklist for MS SQL Server 2014,</span><span style="font-family:Roboto;letter-spacing:.1pt"> site version 3<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.5pt;font-family:"Segoe UI",sans-serif">CIS Checklist for MS SQL Server 2016,</span><span style="font-family:Roboto;letter-spacing:.1pt"> site version 9</span><span style="font-size:11.5pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.5pt;font-family:"Segoe UI",sans-serif">CIS Checklist for MS SQL Server 2017,</span><span style="font-family:Roboto;letter-spacing:.1pt"> site version 7<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:black"><br>
(The site version is provided for air-gap customers.)</span><span style="font-size:10.0pt"><br>
<br>
</span><strong><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">Details:</span></strong><o:p></o:p></p>
<ul type="disc">
<li class="MsoNormal" style="color:#222222;mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;mso-list:l1 level1 lfo1;background:white">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;mso-fareast-language:EN-IN">Fixed and Improved implementation for the following check to avoid failure when any databases are offline or any special characters in database name<o:p></o:p></span></li><ul type="circle">
<li class="MsoNormal" style="color:#222222;mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;mso-list:l1 level2 lfo1;background:white">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;mso-fareast-language:EN-IN">3.2 - Ensure CONNECT permissions on the ‘guest user’ is Revoked within all SQL Server databases excluding the master, msdb and tempdb<o:p></o:p></span></li><li class="MsoNormal" style="color:#222222;mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;mso-list:l1 level2 lfo1;background:white">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;mso-fareast-language:EN-IN">7.1 - Ensure ‘Symmetric Key encryption algorithm’ is set to ‘AES_128’ or higher in non-system databases<o:p></o:p></span></li><li class="MsoNormal" style="color:#222222;mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;mso-list:l1 level2 lfo1;background:white">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;mso-fareast-language:EN-IN">7.2 - Ensure Asymmetric Key Size is set to ‘greater than or equal to 2048’ in non-system databases<o:p></o:p></span></li></ul>
</ul>
<p class="MsoNormal"><span style="font-size:10.0pt"><o:p> </o:p></span></p>
<p class="MsoNormal" style="text-autospace:none"><strong><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">Actions to take:</span></strong><strong><span style="font-size:10.5pt;font-family:Helvetica"><o:p></o:p></span></strong></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoListParagraphCxSpFirst" style="margin-top:6.0pt;margin-bottom:6.0pt;margin-left:0in;mso-add-space:auto;mso-list:l0 level1 lfo2;text-autospace:none">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">To subscribe to the above site, you can use the License Overview Dashboard to enable and gather the site. Note that you must be entitled to the BigFix Compliance product, and you
must be using BigFix version 9.2 and later. </span><o:p></o:p></li><li class="MsoListParagraphCxSpLast" style="color:#0563C1;margin-top:6.0pt;margin-bottom:6.0pt;margin-left:0in;mso-add-space:auto;mso-list:l0 level1 lfo2;text-autospace:none">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">If you use custom sites, update your custom sites accordingly to use the latest content. You can synchronize your content by using the Synchronize Custom Checks wizard. For more
information, see </span><span style="color:windowtext"><a href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fhelp.hcltechsw.com%2Fbigfix%2F10.0%2Fcompliance%2FCompliance%2FSCM_Users_Guide%2Fc_using_synchronize_custom_checks_wiz.html&data=05%7C01%7CBigFix-Scrum-Earth%40hcl.com%7C850b19aead5a47f24eb308da841ed642%7C189de737c93a4f5a8b686f4ca9941912%7C0%7C0%7C637967565224681222%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=KIEcA%2B8alhcOTNhoNtuPAhcQ2w%2FURNERu8OaaxxiNB4%3D&reserved=0"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif">https://help.hcltechsw.com/bigfix/10.0/compliance/Compliance/SCM_Users_Guide/c_using_synchronize_custom_checks_wiz.html</span></a></span><span class="MsoHyperlink"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif"><o:p></o:p></span></span></li></ul>
<p class="MsoNormal" style="text-autospace:none"><o:p> </o:p></p>
<p class="MsoNormal" style="text-autospace:none"><strong><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">More information:</span></strong><b><span lang="EN-IN" style="font-size:10.0pt;color:black">
</span></b><span style="font-size:10.0pt"><br>
</span><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">To know more about the BigFix Compliance SCM checklists, please see the following resources:</span><b><span style="font-size:10.0pt;color:black"><o:p></o:p></span></b></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoListParagraphCxSpFirst" style="color:#0563C1;margin-top:6.0pt;margin-bottom:6.0pt;margin-left:0in;mso-add-space:auto;mso-list:l2 level1 lfo3;text-autospace:none">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">BigFix Forum:<br>
</span><span style="color:windowtext"><a href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fforum.bigfix.com%2Fc%2Frelease-announcements%2Fcompliance&data=05%7C01%7CBigFix-Scrum-Earth%40hcl.com%7C850b19aead5a47f24eb308da841ed642%7C189de737c93a4f5a8b686f4ca9941912%7C0%7C0%7C637967565224681222%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=UYYRYb3SofshREYync5mCc2d5MUGb53t7OjOCBg%2BoJg%3D&reserved=0"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif">https://forum.bigfix.com/c/release-announcements/compliance</span></a></span><span class="MsoHyperlink"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif"><o:p></o:p></span></span></li><li class="MsoListParagraphCxSpLast" style="color:black;margin-top:6.0pt;margin-bottom:6.0pt;margin-left:0in;mso-add-space:auto;mso-list:l2 level1 lfo3;text-autospace:none">
<span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">BigFix Compliance SCM Checklists:</span><span style="font-size:10.0pt;font-family:"Calibri",sans-serif;color:#222222"><br>
</span><span style="color:windowtext"><a href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbigfix-wiki.hcltechsw.com%2Fwikis%2Fhome%3Flang%3Denus%23!%2Fwiki%2FBigFix%2520Wiki%2Fpage%2FSCM%2520Checklists&data=05%7C01%7CBigFix-Scrum-Earth%40hcl.com%7C850b19aead5a47f24eb308da841ed642%7C189de737c93a4f5a8b686f4ca9941912%7C0%7C0%7C637967565224681222%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=sJEji05sRie522iksNIya8RoKSDGBtgSCKlAzsF0N%2Fo%3D&reserved=0"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif">https://bigfix-wiki.hcltechsw.com/wikis/home?lang=enus#!/wiki/BigFix%20Wiki/page/SCM%20Checklists</span></a></span><span style="font-size:10.0pt"><o:p></o:p></span></li></ul>
<p class="MsoNormal" style="mso-margin-top-alt:6.0pt;margin-right:0in;margin-bottom:6.0pt;margin-left:0in;text-autospace:none">
<span style="font-size:10.0pt;color:black"><o:p> </o:p></span></p>
<p class="MsoNormal" style="margin-bottom:12.0pt"><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">We hope you find this latest release of SCM content useful and effective. Thank you!</span><span style="font-size:10.5pt"><o:p></o:p></span></p>
<p class="MsoNormal" style="margin-bottom:12.0pt"><i><span lang="EN-IN" style="font-size:10.5pt;font-family:Helvetica;color:#222222">– The BigFix Compliance team</span></i><i><span style="font-size:10.0pt"><o:p></o:p></span></i></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</body>
</html>