STIGQter: STIG Summary: Cisco IOS Router NDM Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 26 Apr 2021: STIGQter: STIG Summary: Cisco IOS Router NDM Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 26 Apr 2021:SV-215692r521266_rule
V-215692
SRG-APP-000360-NDM-000295
CISC-ND-001000
CAT II
10
Configure the Cisco router to send critical to emergency log messages to the syslog server as shown in the example below.
4(config)#logging host x.x.x.x
R4(config)#logging trap critical
Note: The parameter "critical" can replaced with a lesser severity level (i.e., error, warning, notice, informational).
Review the Cisco router configuration to verify that it is compliant with this requirement as shown in the example below.
logging trap critical
logging x.x.x.x
Note: The parameter "critical" can replaced with a lesser severity level (i.e., error, warning, notice, informational). Informational is the default severity level; hence, if the severity level is configured to informational, the logging trap command will not be shown in the configuration.
If the Cisco router is not configured to generate an alert for all audit failure events, this is a finding.
V-215692
False
CISC-ND-001000
Review the Cisco router configuration to verify that it is compliant with this requirement as shown in the example below.
logging trap critical
logging x.x.x.x
Note: The parameter "critical" can replaced with a lesser severity level (i.e., error, warning, notice, informational). Informational is the default severity level; hence, if the severity level is configured to informational, the logging trap command will not be shown in the configuration.
If the Cisco router is not configured to generate an alert for all audit failure events, this is a finding.
M
4014