Best practices

SQL Server instance with ‘external scripts enabled’ flag set to ‘on’

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

We have found that {GcpSQLInstance} has 'external scripts enabled' flag set to 'on'. 'external scripts enabled' allows the execution of scripts with certain remote language extensions. This property is OFF by default. When Advanced Analytics Services is installed, setup can optionally set this property to 'on', which could adversely affect the security of the system, hence this should be disabled.
  • Recommended Mitigation

    Make sure 'external scripts enabled' flag is set to 'off'