PentaSafe Extends Database Security to Microsoft SQL Server


VigilEnt Security Agent for SQL Server v.1.0 automates database security management and bolsters native security controls

PentaSafe Security Technologies, Inc., a leading provider of integrated security management solutions, announced earlier this week general availability of its VigilEnt Security Agent for Microsoft SQL Server v.1.0, which complements its existing line of Oracle and Sybase database security solutions and automates security management for SQL Server databases.

Databases are one of the most critical assets of any Global 2000 enterprise and are often overlooked when assessing and ensuring proper levels of
IT security. An increased number of serious attacks, coupled with the frequency of security-related patches and service packs, continue to cause
headaches for security and database administrators alike.

“What we are seeing from customers is that while they are methodically locking down operating systems and Web servers, they are not consistently
taking the same steps to secure their underlying databases,” commented Greg Davoll, Database Product Manager at PentaSafe.” The VigilEnt Security Agent
for SQL Server gives customers the ability to limit their database’s exposure to attacks and worms that exploit null passwords, default accounts, or over-privileged users, which ultimately yields a more secure environment.”

VigilEnt Security Agent for Microsoft SQL Server v.1.0

VigilEnt Security Agent for Microsoft SQL Server v.1.0 provides vulnerability assessment, security administration, and database auditing for
SQL Server v7 and v2000 databases, enabling customers to self-audit their database environments. PentaSafe has packed the latest Microsoft vulnerability
information, including those specifically for buffer overflows, service pack releases, extended stored procedure privileges, and Web tasks into the Agent.
Additionally, the Agent supports compliance with regulatory guidelines, such as the Health Insurance Portability and Accountability Act (HIPAA), Gramm-
Leach-Bliley Act (GLBA) and FDA 21 CFR Part 11.


Key Functionality


Vulnerability Assessment: Custom tasks define and save multiple queries,
producing a single vulnerability assessment report that may be run against
multiple, distributed SQL Servers in parallel. Administrators are able to
automate SQL queries and generate security compliance reports, which may be
quickly recalled and re-executed. Over 30 SQL Server user and system reports
can be generated in addition to more than 58 SQL Server vulnerability checks.

Security Administration: A set of database security administration actions
allow delegation of security-related tasks, including provisioning user
accounts, changing of account passwords, and granting system and object
privileges. An intuitive interface allows these actions to be executed across
multiple database instances in parallel.

Database Auditing: Audit Manager enhances the native audit trail and
provides details on stored procedure execution, selective data updates, and
other security-related operations. These features, as well as user-defined
auditing, aid companies in complying with regulations such as HIPAA, GLBA, FDA
21 CFR Part 11, and other privacy related regulations.

Additionally, security administrators are able to centrally manage SQL
Server along with Oracle and Sybase databases via PentaSafe’s VigilEnt
Security Manager’s enterprise console.


The VigilEnt Security Agent for SQL Server v.1.0 is available now, with additional information on the PentaSafe Website:
http://www.pentasafe.com/products/agents/databases/sql.asp.

Back to Database Journal Home

Latest Articles