DoD STIGs – V-32446

Overview:

Title: The DBMS must use multifactor authentication for local access to non-privileged accounts.

Vulnerability ID: V-32446

STIG ID:

IA Controls: None

Severity: medium

Description: Multifactor authentication is defined as using two or more factors to achieve authentication.

Factors include:
(i) Something a user knows (e.g., password/PIN);
(ii) Something a user has (e.g., cryptographic identification device, token); or
(iii) Something a user is (e.g., biometric).

A non-privileged account is defined as an information system account with authorizations of a regular or non-privileged user.

Local Access is defined as access to an organizational information system by a user (or process acting on behalf of a user) communicating through a direct connection without the use of a network.

The lack of multifactor authentication makes it much easier for an attacker to gain unauthorized access to a system.

Check Text: Review DBMS settings to determine whether users logging into non-privileged accounts locally are required to use multifactor authentication. If users logging into non-privileged accounts locally are not required to use multifactor authentication, this is a finding.

Fix Text: Configure DBMS settings to require multifactor authentication for local users logging into non-privileged accounts.

[divider]

Interpreting V-32446:

Coming Soon!

Return to the DoD STIGs – Database Security Requirements Guide

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.