Check CLR Enabled should also check strict security?

[Morphin22]

Hi

The CLR Enabled Check should also check "clr strict security". In the CIS Document it says:
"If clr strict security is set to 1 this recommendation is not applicable", So if strict security is 1 then the CLR Enabled Check can be ignored.

Do you agree?

Kind Regards
Andy

[Morphin22]

HI
As a workaround i have adjust the Instance.Assertions.ps1 with the following Code:

function Assert-CLREnabled {
param (
$SQLInstance,
$CLREnabled
)
[math]::max(0,(Get-DbaSpConfigure -SqlInstance $SQLInstance -Name IsSqlClrEnabled).ConfiguredValue - (Get-DbaSpConfigure -SqlInstance EDAVSP01143 -name ClrStrictSecurity).ConfiguredValue) -eq 1 | Should -Be $CLREnabled -Because 'The CLR Enabled should be set correctly'
}