STIGQter: STIG Summary: Central Log Server Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jul 2020:

The Central Log Server must provide a logout capability for user initiated communication session.

DISA Rule

SV-109121r1_rule

Vulnerability Number

V-100017

Group Title

SRG-APP-000296-AU-000560

Rule Version

SRG-APP-000296-AU-000560

Severity

CAT II

CCI(s)

• CCI-002363 - The information system provides a logout capability for user-initiated communications sessions whenever authentication is used to gain access to organization-defined information resources.

Weight

10

Fix Recommendation

Configure the Central Log Server to provide a logout capability for user initiated sessions.

Check Contents

Examine the configuration.

Verify that the Central Log Server provides a logout capability for user initiated sessions.

If the Central Log Server does not provide a logout capability for user initiated sessions, this is a finding.

Vulnerability Number

V-100017

Documentable

False

Rule Version

SRG-APP-000296-AU-000560

Severity Override Guidance

Examine the configuration.

Verify that the Central Log Server provides a logout capability for user initiated sessions.

If the Central Log Server does not provide a logout capability for user initiated sessions, this is a finding.

Check Content Reference

M

Target Key

3395

Comments