STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:SV-229017r518229_rule
V-229017
SRG-APP-000516-NDM-000317
JUSX-DM-000021
CAT II
10
Configure the Juniper SRX to generate and send a notification or log message immediately that can be forwarded via an event monitoring system (e.g., via Syslog configuration, SNMP trap, manned console message, or other events monitoring system). The NSM, Syslog, or SNMP server must then be configured to send the message.
The following commands configure the device to immediately display a message to any currently logged on administrator's console when changes are made to the configuration. This is an example method. Alerts must be sent immediately to the designated individuals (e.g., via Syslog configuration, SNMP trap, manned console message, or other events monitoring system).
[edit]
set system syslog users * change-log <info | any>
set system syslog host <IP-syslog-server> any any
set system syslog file account-actions change-log any any
Verify the device is configured to display change-log events of severity info.
[edit]
show system syslog
If the system does not display account disabling actions on the management console and generate an event log message to the Syslog server and a local file, this is a finding.
V-229017
False
JUSX-DM-000021
Verify the device is configured to display change-log events of severity info.
[edit]
show system syslog
If the system does not display account disabling actions on the management console and generate an event log message to the Syslog server and a local file, this is a finding.
M
4098