STIGQter: STIG Summary: VMware vRealize Automation 7.x tc Server Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

tc Server ALL must use a logging mechanism that is configured to allocate log record storage capacity large enough to accommodate the logging requirements of the web server.

DISA Rule

SV-100771r1_rule

Vulnerability Number

V-90121

Group Title

SRG-APP-000357-WSR-000150

Rule Version

VRAU-TC-000740

Severity

CAT II

CCI(s)

CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

Fix Recommendation

Configure the web server to use a logging mechanism that is configured to allocate log record storage capacity in accordance with NIST SP 800-92 log record storage requirements.

Check Contents

Interview the ISSO.

Determine if tc Server ALL is using a logging mechanism that is configured to have a capacity large enough to accommodate logging requirements.

If the logging mechanism does not have sufficient capacity, this is a finding.

tc Server ALL must use a logging mechanism that is configured to allocate log record storage capacity large enough to accommodate the logging requirements of the web server.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments