STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must, at a minimum, off-load audit logs of interconnected systems in real time and off-load standalone systems weekly.

DISA Rule

SV-234665r617355_rule

Vulnerability Number

V-234665

Group Title

SRG-APP-000515

Rule Version

SRG-APP-000515-UEM-000390

Severity

CAT II

CCI(s)

• CCI-001851 - The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.

Weight

10

Fix Recommendation

Configure the UEM server to, at a minimum, off-load audit logs of interconnected systems in real time and off-load standalone systems weekly.

Check Contents

Verify the UEM server, at a minimum, off-loads audit logs of interconnected systems in real time and off-load standalone systems weekly.

If the UEM server does not off-load audit logs of interconnected systems in real time and off-load standalone systems weekly, this is a finding.

Vulnerability Number

V-234665

Documentable

False

Rule Version

SRG-APP-000515-UEM-000390

Severity Override Guidance

Verify the UEM server, at a minimum, off-loads audit logs of interconnected systems in real time and off-load standalone systems weekly.

If the UEM server does not off-load audit logs of interconnected systems in real time and off-load standalone systems weekly, this is a finding.

Check Content Reference

M

Target Key

5269

Comments