STIGQter: STIG Summary: VMware vRealize Automation 7.x SLES Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

The SLES for vRealize must initiate session audits at system start-up.

DISA Rule

SV-100401r1_rule

Vulnerability Number

V-89751

Group Title

SRG-OS-000254-GPOS-00095

Rule Version

VRAU-SL-000895

Severity

CAT II

CCI(s)

CCI-001464 - The information system initiates session audits at system start-up.

Weight

Fix Recommendation

Edit the grub bootloader file /boot/grub/menu.lst by appending the "audit=1" parameter to the kernel boot line.

Reboot the system for the change to take effect.

Check Contents

Check for the "audit=1" kernel parameter.

# grep "audit=1" /proc/cmdline

If no results are returned, this is a finding.

Vulnerability Number

V-89751

Documentable

False

Rule Version

VRAU-SL-000895

Severity Override Guidance

Check for the "audit=1" kernel parameter.

# grep "audit=1" /proc/cmdline

If no results are returned, this is a finding.

Check Content Reference

Target Key

3459

The SLES for vRealize must initiate session audits at system start-up.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments