STIGQter: STIG Summary: Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide Version: 2 Release: 6 Benchmark Date: 24 Jul 2020:

The IDPS must provide log information in a format that can be extracted and used by centralized analysis tools.

DISA Rule

SV-69581r1_rule

Vulnerability Number

V-55335

Group Title

SRG-NET-000091-IDPS-00193

Rule Version

SRG-NET-000091-IDPS-00193

Severity

CAT II

CCI(s)

• CCI-000154 - The information system provides the capability to centrally review and analyze audit records from multiple components within the system.

Weight

10

Fix Recommendation

Configure the IDPS to provide log information in a format that can be extracted and used by centralized analysis tools.

Check Contents

Verify the IDPS provides log information in a format that can be extracted and used by centralized analysis tools.

If the IDPS does not provide log information in a format that can be extracted and used by centralized analysis tools, this is a finding.

Vulnerability Number

V-55335

Documentable

False

Rule Version

SRG-NET-000091-IDPS-00193

Severity Override Guidance

Verify the IDPS provides log information in a format that can be extracted and used by centralized analysis tools.

If the IDPS does not provide log information in a format that can be extracted and used by centralized analysis tools, this is a finding.

Check Content Reference

M

Target Key

2358

Comments