STIGQter: STIG Summary: Central Log Server Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jul 2020:

For locally created accounts in the application, the Central Log Server must be configured to allow the use of a temporary password for system logons with an immediate change to a permanent password.

DISA Rule

SV-96045r1_rule

Vulnerability Number

V-81331

Group Title

SRG-APP-000397-AU-002590

Rule Version

SRG-APP-000397-AU-002590

Severity

CAT II

CCI(s)

• CCI-002041 - The information system allows the use of a temporary password for system logons with an immediate change to a permanent password.

Weight

10

Fix Recommendation

Configure the Central Log Server to allow the use of a temporary password for system logons with an immediate change to a permanent password.

Check Contents

Examine the configuration.

Verify the Central Log Server is configured to allow the use of a temporary password for system logons with an immediate change to a permanent password.

If the Central Log Server is not configured to allow the use of a temporary password for system logons with an immediate change to a permanent password, this is a finding.

Vulnerability Number

V-81331

Documentable

False

Rule Version

SRG-APP-000397-AU-002590

Severity Override Guidance

Examine the configuration.

Verify the Central Log Server is configured to allow the use of a temporary password for system logons with an immediate change to a permanent password.

If the Central Log Server is not configured to allow the use of a temporary password for system logons with an immediate change to a permanent password, this is a finding.

Check Content Reference

M

Target Key

3395

Comments