Ole Automation Procedures

The Ole Automation Procedures setting in SQL Server enables the SQL Server to leverage OLE (Object Linking and Embedding) to interact with other COM (Component Object Model) objects. This can increase the attack surface of your SQL Server instance and potentially expose it to security risks.

What Are the Risks Associated With Enabling Ole Automation Procedures

Enabling Ole Automation Procedures can increase the attack surface of SQL Server and allow users to execute functions in the security context of SQL Server. The risk is that the object you are calling from your stored procedure does not do what you think it does.

Suggested Action

Disable Ole Automation Procedures.

How to Reset/Disable Ole Automation Procedures

EXEC sys.sp_configure @configname=N'show advanced options', @configvalue=N'1';
RECONFIGURE;
GO
EXEC sp_configure 'Ole Automation Procedures', 0;
RECONFIGURE WITH OVERRIDE;
GO
EXEC sys.sp_configure @configname=N'show advanced options', @configvalue=N'0';
RECONFIGURE;
GO

Installation

Profile Management

Estate

Advisor

Results Explained

Monitor

Compare

Script

Ole Automation Procedures

What Are the Risks Associated With Enabling Ole Automation Procedures

Suggested Action

How to Reset/Disable Ole Automation Procedures

Further Reading