STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 4 Release: 1 Benchmark Date: 23 Apr 2021:

The network device must generate audit records when successful/unsuccessful attempts to delete administrator privileges occur.

DISA Rule

SV-202122r400831_rule

Vulnerability Number

V-202122

Group Title

SRG-APP-000499

Rule Version

SRG-APP-000499-NDM-000319

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Configure the network device to generate audit records when successful/unsuccessful attempts to delete administrator privileges occur.

Check Contents

Determine if the network device generates audit records when successful/unsuccessful attempts to delete administrator privileges occur.

If the network device does not generate audit records when successful/unsuccessful attempts to delete administrator privileges occur, this is a finding.

Vulnerability Number

V-202122

Documentable

False

Rule Version

SRG-APP-000499-NDM-000319

Severity Override Guidance

Determine if the network device generates audit records when successful/unsuccessful attempts to delete administrator privileges occur.

If the network device does not generate audit records when successful/unsuccessful attempts to delete administrator privileges occur, this is a finding.

Check Content Reference

M

Target Key

2890

Comments