STIGQter: STIG Summary: CA API Gateway NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 19 Sep 2016:

The CA API Gateway must generate audit records when successful/unsuccessful logon attempts occur.

DISA Rule

SV-86187r1_rule

Vulnerability Number

V-71563

Group Title

SRG-APP-000503-NDM-000320

Rule Version

CAGW-DM-000320

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Obtain a copy of the appropriate audit package RPM file from CA Support and install it using RPM:

rpm -i "RPMFILE"

Check Contents

Confirm the CA API Gateway file "/etc/audit/audit.rules" is the file as distributed using command:

rpm -Vf /etc/audit/audit.rules

If the string returned contains a "5" (ok: .......T., failure: S.5....T.), this is a finding.

Vulnerability Number

V-71563

Documentable

False

Rule Version

CAGW-DM-000320

Severity Override Guidance

Confirm the CA API Gateway file "/etc/audit/audit.rules" is the file as distributed using command:

rpm -Vf /etc/audit/audit.rules

If the string returned contains a "5" (ok: .......T., failure: S.5....T.), this is a finding.

Check Content Reference

M

Target Key

3051

Comments