STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must generate audit records when successful/unsuccessful attempts to access security objects occur.

DISA Rule

SV-234642r617355_rule

Vulnerability Number

V-234642

Group Title

SRG-APP-000492

Rule Version

SRG-APP-000492-UEM-000367

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Configure the UEM server to generate audit records when successful/unsuccessful attempts to access security objects occur.

Check Contents

Verify the UEM server generates audit records when successful/unsuccessful attempts to access security objects occur.

If the UEM server does not generate audit records when successful/unsuccessful attempts to access security objects occur, this is a finding.

Vulnerability Number

V-234642

Documentable

False

Rule Version

SRG-APP-000492-UEM-000367

Severity Override Guidance

Verify the UEM server generates audit records when successful/unsuccessful attempts to access security objects occur.

If the UEM server does not generate audit records when successful/unsuccessful attempts to access security objects occur, this is a finding.

Check Content Reference

M

Target Key

5269

Comments