STIGQter: STIG Summary: Trend Micro Deep Security 9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 26 Feb 2016:

Trend Deep Security must automatically audit account modification.

DISA Rule

SV-80353r1_rule

Vulnerability Number

V-65863

Group Title

SRG-APP-000027

Rule Version

TMDS-00-000025

Severity

CAT II

CCI(s)

• CCI-001403 - The information system automatically audits account modification actions.

Weight

10

Fix Recommendation

Configure the Trend Deep Security server to automatically audit account creation.

Enable "User Updated" events by selecting the following:

Administration >> System Settings >> System Events >> Enable Event ID 652 User Updated.

Select: Record
Select: Forward

Check Contents

Review the Trend Deep Security server configuration to ensure account creation is automatically audited.

Verify "User Updated" events is enabled by reviewing the following:

Administration >> System Settings >> System Events >> Enable Event ID 652 User Updated.

Select: Record
Select: Forward

If "User Updated" is not enabled this is a finding.

Vulnerability Number

V-65863

Documentable

False

Rule Version

TMDS-00-000025

Severity Override Guidance

Review the Trend Deep Security server configuration to ensure account creation is automatically audited.

Verify "User Updated" events is enabled by reviewing the following:

Administration >> System Settings >> System Events >> Enable Event ID 652 User Updated.

Select: Record
Select: Forward

If "User Updated" is not enabled this is a finding.

Check Content Reference

M

Target Key

2955

Comments