STIGQter: STIG Summary: Application Server Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 23 Oct 2020:

The application server must generate log records containing the full-text recording of privileged commands or the individual identities of group account users.

DISA Rule

SV-204727r508029_rule

Vulnerability Number

V-204727

Group Title

SRG-APP-000101

Rule Version

SRG-APP-000101-AS-000072

Severity

CAT II

CCI(s)

• CCI-000135 - The information system generates audit records containing the organization-defined additional, more detailed information that is to be included in the audit records.

Weight

10

Fix Recommendation

Configure the application server to generate the full-text recording of privileged commands or the individual identities of group users, or both.

Check Contents

Review the application server documentation and deployment configuration to determine if the application server is configured to generate full-text recording of privileged commands or the individual identities of group users at a minimum.

Have a user execute a privileged command and review the log data to validate that the full-text or identity of the individual is being logged.

If the application server is not meeting this requirement, this is a finding.

Vulnerability Number

V-204727

Documentable

False

Rule Version

SRG-APP-000101-AS-000072

Severity Override Guidance

Review the application server documentation and deployment configuration to determine if the application server is configured to generate full-text recording of privileged commands or the individual identities of group users at a minimum.

Have a user execute a privileged command and review the log data to validate that the full-text or identity of the individual is being logged.

If the application server is not meeting this requirement, this is a finding.

Check Content Reference

M

Target Key

2900

Comments