STIGQter: STIG Summary: EDB Postgres Advanced Server Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The EDB Postgres Advanced Server must provide centralized configuration of the content to be captured in audit records generated by all components of the EDB Postgres Advanced Server.

DISA Rule

SV-213621r508024_rule

Vulnerability Number

V-213621

Group Title

SRG-APP-000356-DB-000315

Rule Version

PPS9-00-007800

Severity

CAT II

CCI(s)

• CCI-001844 - The information system provides centralized management and configuration of the content to be captured in audit records generated by organization-defined information system components.

Weight

10

Fix Recommendation

Install a centralized log collecting tool and configure it as instructed in its documentation.

If using PEM, find the instructions at
http://www.enterprisedb.com/docs/en/6.0/pemgetstarted/toc.html

Check Contents

If a unified tool for audit configuration such as PEM (Postgres Enterprise Manager) is not installed and configured to automatically collect audit logs, this is a finding.

Review the system documentation for a description of how audit records are off-loaded and how local audit log space is managed.

Vulnerability Number

V-213621

Documentable

False

Rule Version

PPS9-00-007800

Severity Override Guidance

If a unified tool for audit configuration such as PEM (Postgres Enterprise Manager) is not installed and configured to automatically collect audit logs, this is a finding.

Review the system documentation for a description of how audit records are off-loaded and how local audit log space is managed.

Check Content Reference

M

Target Key

3988

Comments