STIGQter STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:

The Juniper SRX Services Gateway must generate log records when concurrent logons from different workstations occur.

DISA Rule

SV-223196r513280_rule

Vulnerability Number

V-223196

Group Title

SRG-APP-000506-NDM-000323

Rule Version

JUSX-DM-000046

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Configure at least one external syslog host to log facility any and severity info or any. There are multiple ways to accomplish this, the following is an example.

[edit system syslog]
set host <syslog server address> any any

Check Contents

Verify the device generates a log when login events occur.

[edit]
show system syslog

host <syslog server address> {
any any;
source-address <device address>;
}

If an external syslog host is not configured to log, or configured for facility any severity any, this is a finding.

Vulnerability Number

V-223196

Documentable

False

Rule Version

JUSX-DM-000046

Severity Override Guidance

Verify the device generates a log when login events occur.

[edit]
show system syslog

host <syslog server address> {
any any;
source-address <device address>;
}

If an external syslog host is not configured to log, or configured for facility any severity any, this is a finding.

Check Content Reference

M

Target Key

4098

Comments