STIGQter: STIG Summary: CA API Gateway NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 19 Sep 2016:

The CA API Gateway must generate audit log events for a locally developed list of auditable events.

DISA Rule

SV-86195r1_rule

Vulnerability Number

V-71571

Group Title

SRG-APP-000516-NDM-000334

Rule Version

CAGW-DM-000360

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

The Gateway relies on the standard Linux audit subsystem. The subsystem is configurable by modifying /etc/audit/audit.rules. Custom rules can be added to this file.

See the Linux man-page for audit.rules(7) for detail about specifying custom rules.

Check Contents

Examine "/etc/audit/audit.rules" to confirm any custom developed rules are contained within the file.

If the "/etc/audit/audit.rules" does not contain the custom developed rules within the file, this is a finding.

Vulnerability Number

V-71571

Documentable

False

Rule Version

CAGW-DM-000360

Severity Override Guidance

Examine "/etc/audit/audit.rules" to confirm any custom developed rules are contained within the file.

If the "/etc/audit/audit.rules" does not contain the custom developed rules within the file, this is a finding.

Check Content Reference

M

Target Key

3051

Comments