STIGQter: STIG Summary: Authentication, Authorization, and Accounting Services (AAA) Security Requirements Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

AAA Services must be configured to send audit records to a centralized audit server.

DISA Rule

SV-95579r1_rule

Vulnerability Number

V-80869

Group Title

SRG-APP-000358-AAA-000280

Rule Version

SRG-APP-000358-AAA-000280

Severity

CAT II

CCI(s)

CCI-001851 - The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.

Weight

Fix Recommendation

Configure AAA Services to send audit records to a centralized audit server.

Check Contents

Verify AAA Services are configured to send audit records to a centralized audit server.

If AAA Services are not configured to send audit records to a centralized audit server, this is a finding.

Vulnerability Number

V-80869

Documentable

False

Rule Version

SRG-APP-000358-AAA-000280

Severity Override Guidance

Verify AAA Services are configured to send audit records to a centralized audit server.

If AAA Services are not configured to send audit records to a centralized audit server, this is a finding.

Check Content Reference

Target Key

3357

AAA Services must be configured to send audit records to a centralized audit server.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments