STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 4 Release: 1 Benchmark Date: 23 Apr 2021:

The network device must generate audit records containing information that establishes the identity of any individual or process associated with the event.

DISA Rule

SV-202035r395736_rule

Vulnerability Number

V-202035

Group Title

SRG-APP-000100

Rule Version

SRG-APP-000100-NDM-000230

Severity

CAT II

CCI(s)

• CCI-001487 - The information system generates audit records containing information that establishes the identity of any individuals or subjects associated with the event.

Weight

10

Fix Recommendation

Configure the network device to generate audit records containing information that establishes the identity of any individual or process associated with the event.

Check Contents

Determine if the network device generates audit records containing information that establishes the identity of any individual or process associated with the event. This requirement may be verified by demonstration or validated test results. If the network device does not generate audit records containing information that establishes the identity of any individual or process associated with the event, this is a finding.

Vulnerability Number

V-202035

Documentable

False

Rule Version

SRG-APP-000100-NDM-000230

Severity Override Guidance

Determine if the network device generates audit records containing information that establishes the identity of any individual or process associated with the event. This requirement may be verified by demonstration or validated test results. If the network device does not generate audit records containing information that establishes the identity of any individual or process associated with the event, this is a finding.

Check Content Reference

M

Target Key

2890

Comments