STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:

The Juniper SRX Services Gateway must automatically generate a log event when accounts are enabled.

DISA Rule

SV-223185r513250_rule

Vulnerability Number

V-223185

Group Title

SRG-APP-000319-NDM-000283

Rule Version

JUSX-DM-000023

Severity

CAT II

CCI(s)

• CCI-002130 - The information system automatically audits account enabling actions.

Weight

10

Fix Recommendation

The following commands configure the device to immediately display a message to any currently logged on administrator's console when changes are made to the configuration.

[edit]
set system syslog host <IP-syslog-server> any any
set system syslog file account-actions change-log any any

Check Contents

Verify the device is configured to display change-log events of severity info.

[edit]
show system syslog

If the system is not configured to generate a log record when account enabling actions occur, this is a finding.

Vulnerability Number

V-223185

Documentable

False

Rule Version

JUSX-DM-000023

Severity Override Guidance

Verify the device is configured to display change-log events of severity info.

[edit]
show system syslog

If the system is not configured to generate a log record when account enabling actions occur, this is a finding.

Check Content Reference

M

Target Key

4098

Comments