STIGQter: STIG Summary: Symantec ProxySG NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020: STIGQter: STIG Summary: Symantec ProxySG NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:SV-104509r1_rule
V-94679
SRG-APP-000125-NDM-000241
SYMP-NM-000140
CAT II
10
Configure event logging to a remote events server to ensure that event logs are recorded on a different system.
To configure Syslog:
1. Log on to the Web Management Console.
2. Click Maintenance >> Event Logging >> Syslog.
3. Enter the IP address or name of a syslog server, click "OK".
4. Repeat step 3 for any additional syslog servers.
5. Click "Apply".
Verify event logging to a remote events collection server is configured in order to send event logs to a different system.
1. Log on to the Web Management Console.
2. Click Maintenance >> Event Logging >> Syslog.
3. Confirm that "Syslog" is "Enabled" and a syslog server is specified.
If Symantec ProxySG does not back up event logs onto a different system or system component than the system or component being audited, this is a finding.
V-94679
False
SYMP-NM-000140
Verify event logging to a remote events collection server is configured in order to send event logs to a different system.
1. Log on to the Web Management Console.
2. Click Maintenance >> Event Logging >> Syslog.
3. Confirm that "Syslog" is "Enabled" and a syslog server is specified.
If Symantec ProxySG does not back up event logs onto a different system or system component than the system or component being audited, this is a finding.
M
3517