CLR Usage security problem
Article ID: 275934
Updated On:
Products
CA Configuration Automation
Issue/Introduction
A prerequisite of Configuration Automation is to enable CLR in Microsoft SQL Server :
"The application warns that the CA Configuration Automation Server uses CLR functions in SQL Server to implement regular expressions in SQL queries."
CLR must be enabled in Microsoft SQL Server. But it is safe to enable this ?
Environment
CA Configuration Automation 12.9
Resolution
The type of permissions that were granted to the assemblies when they were created in the DB are all "SAFE_ACCESS", so from a SQL security point of view, the usage of these CLR functions are safe and should not be considered as a security problem.
Feedback
Yes
No
Powered by
