STIGQter STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:

For local logging, the Juniper SRX Services Gateway must generate a message to the system management console when a log processing failure occurs.

DISA Rule

SV-229022r518244_rule

Vulnerability Number

V-229022

Group Title

SRG-APP-000516-NDM-000317

Rule Version

JUSX-DM-000060

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

The following commands configure syslog to immediately display any emergency level or daemon alert events to the management console. The message will display on any currently logged on administrator's console.

[edit]
set system syslog user * any emergency
set system syslog user * daemon alert
set system syslog user * daemon critical

Check Contents

Verify the system Syslog has been configured to display an alert on the console for the emergency and alert levels of the daemon facility.

[edit]
show system syslog

If the system is not configured to generate a message to the system management console when a log processing failure occurs, this is a finding.

Vulnerability Number

V-229022

Documentable

False

Rule Version

JUSX-DM-000060

Severity Override Guidance

Verify the system Syslog has been configured to display an alert on the console for the emergency and alert levels of the daemon facility.

[edit]
show system syslog

If the system is not configured to generate a message to the system management console when a log processing failure occurs, this is a finding.

Check Content Reference

M

Target Key

4098

Comments