STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 4 Release: 1 Benchmark Date: 23 Apr 2021:

The network device must allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.

DISA Rule

SV-202098r399877_rule

Vulnerability Number

V-202098

Group Title

SRG-APP-000357

Rule Version

SRG-APP-000357-NDM-000293

Severity

CAT II

CCI(s)

• CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

10

Fix Recommendation

Configure the network device to allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.

Check Contents

Determine if the network device allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

This requirement may be verified by configuration review or vendor-provided information. This requirement may be met through use of a properly configured syslog server if the device is configured to use the syslog server.

If audit record store capacity is not allocated in accordance with organization-defined audit record storage requirements, this is a finding.

Vulnerability Number

V-202098

Documentable

False

Rule Version

SRG-APP-000357-NDM-000293

Severity Override Guidance

Determine if the network device allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

This requirement may be verified by configuration review or vendor-provided information. This requirement may be met through use of a properly configured syslog server if the device is configured to use the syslog server.

If audit record store capacity is not allocated in accordance with organization-defined audit record storage requirements, this is a finding.

Check Content Reference

M

Target Key

2890

Comments