STIGQter STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 26 Jul 2019: The Juniper SRX Services Gateway must automatically generate a log event when accounts are enabled.

DISA Rule

SV-80959r1_rule

Vulnerability Number

V-66469

Group Title

SRG-APP-000319-NDM-000283

Rule Version

JUSX-DM-000023

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The following commands configure the device to immediately display a message to any currently logged on administrator's console when changes are made to the configuration.

[edit]
set system syslog host <IP-syslog-server> any any
set system syslog file account-actions change-log any any

Check Contents

Verify the device is configured to display change-log events of severity info.

[edit]
show system syslog

If the system is not configured to generate a log record when account enabling actions occur, this is a finding.

Vulnerability Number

V-66469

Documentable

False

Rule Version

JUSX-DM-000023

Severity Override Guidance

Verify the device is configured to display change-log events of severity info.

[edit]
show system syslog

If the system is not configured to generate a log record when account enabling actions occur, this is a finding.

Check Content Reference

M

Target Key

3039

Comments