STIGQter: STIG Summary: Cisco NX-OS Switch NDM Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

The Cisco switch must generate audit records showing starting and ending time for administrator access to the system.

DISA Rule

SV-220510r604141_rule

Vulnerability Number

V-220510

Group Title

SRG-APP-000505-NDM-000322

Rule Version

CISC-ND-001280

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Configure the switch to log session start and ending per admin session as shown in the example below:

SW1(config)# logging level authpriv 6

Check Contents

Verify that the switch is configured to generate log records showing starting and ending time for administrator access as shown in the example below:

logging level authpri 6

If the switch is not configured to generate log records showing starting and ending time for administrator access, this is a finding.

Vulnerability Number

V-220510

Documentable

False

Rule Version

CISC-ND-001280

Severity Override Guidance

Verify that the switch is configured to generate log records showing starting and ending time for administrator access as shown in the example below:

logging level authpri 6

If the switch is not configured to generate log records showing starting and ending time for administrator access, this is a finding.

Check Content Reference

M

Target Key

4066

Comments