STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 4 Release: 1 Benchmark Date: 23 Apr 2021:

The network device must produce audit log records containing sufficient information to establish what type of event occurred.

DISA Rule

SV-202030r395721_rule

Vulnerability Number

V-202030

Group Title

SRG-APP-000095

Rule Version

SRG-APP-000095-NDM-000225

Severity

CAT II

CCI(s)

• CCI-000130 - The information system generates audit records containing information that establishes what type of event occurred.

Weight

10

Fix Recommendation

Configure the network device to produce audit log records containing sufficient information to establish what type of event occurred.

Check Contents

Determine if the network device produces audit log records containing sufficient information to establish what type of event occurred. If the network device does not produce audit log records containing sufficient information to establish what type of event occurred, this is a finding.

Vulnerability Number

V-202030

Documentable

False

Rule Version

SRG-APP-000095-NDM-000225

Severity Override Guidance

Determine if the network device produces audit log records containing sufficient information to establish what type of event occurred. If the network device does not produce audit log records containing sufficient information to establish what type of event occurred, this is a finding.

Check Content Reference

M

Target Key

2890

Comments