SV-220578r521267_rule
V-220578
SRG-APP-000080-NDM-000220
CISC-ND-000210
CAT II
10
Configure the switch to log administrator activity as shown in the example below:
SW1(config)#logging userinfo
SW1(config)#archive
SW1(config-archive)#log config
SW1(config-archive-log-cfg)#logging enable
SW1(config-archive-log-cfg)#end
Review the Cisco switch configuration to verify that it logs administrator activity as shown in the example below:
hostname R1
!
logging userinfo
!
…
…
…
archive
log config
logging enable
!
Note: The logging userinfo global configuration command will generate a log when a user increases his or her privilege level.
If logging of administrator activity is not configured, this is a finding.
V-220578
False
CISC-ND-000210
Review the Cisco switch configuration to verify that it logs administrator activity as shown in the example below:
hostname R1
!
logging userinfo
!
…
…
…
archive
log config
logging enable
!
Note: The logging userinfo global configuration command will generate a log when a user increases his or her privilege level.
If logging of administrator activity is not configured, this is a finding.
M
4069