STIGhubSTIGhub
STIGhub— A free STIG search and compliance tool·STIGs updated 22 hours ago
Powered by Pylon·Privacy·Terms·Feedback·© 2026 Beacon Cloud Solutions, Inc.
← Back to AvePoint Fly Server Security Technical Implementation Guide

V-283942

CAT III (Low)

Fly Server must be configured to use an enterprise database solution.

Rule ID

SV-283942r1223359_rule

STIG

AvePoint Fly Server Security Technical Implementation Guide

Version

V1R1

CCIs

CCI-000366

Discussion

Configuring the application to implement organizationwide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoW that reflects the most restrictive security posture consistent with operational requirements. Configuration settings are the set of parameters that can be changed that affect the security posture and/or functionality of the system. Security-related parameters are those parameters impacting the security state of the application, including the parameters required to satisfy other security control requirements.

Check Content

Check the Fly Server control database type in the configuration file of Fly Server manager:
Open "<Program Files>\APElements\FLY\Manager\Control\bin\TimerService.exe.config" with a text editor.

If the value of "ConfigDatabaseType" is" SQLite", the system has been configured to use built-in database when installing Fly Server manager. 

If the value of "ConfigDatabaseType" is "SQLite", this is a finding.

If the value of "ConfigDatabaseInstance" points to a path local to the host where Fly Server resided, this is a finding.

Fix Text

Configure Fly Server to use a MS SQL server database when installing Fly Server manager. The MS-SQL server cannot reside on the same host as the Fly Server application.