STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 4 Release: 1 Benchmark Date: 23 Apr 2021:

The network device must generate log records for a locally developed list of auditable events

DISA Rule

SV-202130r401224_rule

Vulnerability Number

V-202130

Group Title

SRG-APP-000516

Rule Version

SRG-APP-000516-NDM-000334

Severity

CAT II

CCI(s)

• CCI-000169 - The information system provides audit record generation capability for the auditable events defined in AU-2 a. at organization-defined information system components.
• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the network device to generate audit log events for a locally developed list of auditable events.

Check Contents

Determine if the network device generates audit log events for a locally developed list of auditable events.

If the network device is not configured to generate audit log events for a locally developed list of auditable events, this is a finding.

Vulnerability Number

V-202130

Documentable

False

Rule Version

SRG-APP-000516-NDM-000334

Severity Override Guidance

Determine if the network device generates audit log events for a locally developed list of auditable events.

If the network device is not configured to generate audit log events for a locally developed list of auditable events, this is a finding.

Check Content Reference

M

Target Key

2890

Comments