SQL Server instance with 'external scripts enabled' flag set to 'on'

Best practices

SQL Server instance with ‘external scripts enabled’ flag set to ‘on’

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCPA
coppa
CPRA
GCP CIS
ISO/IEC 27001
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

We have found that {GcpSQLInstance} has 'external scripts enabled' flag set to 'on'. 'external scripts enabled' allows the execution of scripts with certain remote language extensions. This property is OFF by default. When Advanced Analytics Services is installed, setup can optionally set this property to 'on', which could adversely affect the security of the system, hence this should be disabled.

Recommended Mitigation

Make sure 'external scripts enabled' flag is set to 'off'.

SQL Server instance with ‘external scripts enabled’ flag set to ‘on’

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS