STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must be configured to transfer UEM server logs to another server for storage, analysis, and reporting. Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices.

DISA Rule

SV-234500r617411_rule

Vulnerability Number

V-234500

Group Title

SRG-APP-000358

Rule Version

SRG-APP-000358-UEM-000228

Severity

CAT II

CCI(s)

• CCI-001851 - The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.

Weight

10

Fix Recommendation

Configure the UEM server to be configured to transfer UEM server logs to another server for storage, analysis, and reporting.

Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices.

Check Contents

Verify the UEM server transfers UEM server logs to another server for storage, analysis, and reporting.

If the UEM server does not transfer UEM server logs to another server for storage, analysis, and reporting, this is a finding.

Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices.

Vulnerability Number

V-234500

Documentable

False

Rule Version

SRG-APP-000358-UEM-000228

Severity Override Guidance

Verify the UEM server transfers UEM server logs to another server for storage, analysis, and reporting.

If the UEM server does not transfer UEM server logs to another server for storage, analysis, and reporting, this is a finding.

Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices.

Check Content Reference

M

Target Key

5269

Comments