STIGQter: STIG Summary: Authentication, Authorization, and Accounting Services (AAA) Security Requirements Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

AAA Services configuration audit records must identify any individual user or process associated with the event.

DISA Rule

SV-95577r1_rule

Vulnerability Number

V-80867

Group Title

SRG-APP-000100-AAA-000270

Rule Version

SRG-APP-000100-AAA-000270

Severity

CAT II

CCI(s)

• CCI-001487 - The information system generates audit records containing information that establishes the identity of any individuals or subjects associated with the event.

Weight

10

Fix Recommendation

Configure AAA Services configuration audit records to identify any individual user associated with the event. When events are caused by a system process rather than an individual user, that process must be identified in the audit record.

Check Contents

Verify AAA Services configuration audit records identify any individual user associated with the event. When a system process rather than an individual user causes the event, the process must be identified in the audit record.

If AAA Services configuration audit records do not identify any individual user or process associated with the event, this is a finding.

Vulnerability Number

V-80867

Documentable

False

Rule Version

SRG-APP-000100-AAA-000270

Severity Override Guidance

Verify AAA Services configuration audit records identify any individual user associated with the event. When a system process rather than an individual user causes the event, the process must be identified in the audit record.

If AAA Services configuration audit records do not identify any individual user or process associated with the event, this is a finding.

Check Content Reference

M

Target Key

3357

Comments