STIGQter: STIG Summary: Central Log Server Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jul 2020:

The Central Log Server must be configured to allow selection, capture, and view of all events related to a user session, host, or device when required by authorized users.

DISA Rule

SV-95855r1_rule

Vulnerability Number

V-81141

Group Title

SRG-APP-000354-AU-000080

Rule Version

SRG-APP-000354-AU-000080

Severity

CAT III

CCI(s)

• CCI-001919 - The information system provides the capability for authorized users to select a user session to capture/record or view/hear.

Weight

10

Fix Recommendation

Configure the Central Log Server to allow selection, capture, and view of all events related to a user session, host, or device when required by authorized users.

Check Contents

Examine the configuration.

Verify the system is configured to allow selection, capture, and view of all events related to a user session, host, or device when required by authorized users.

If the Central Log Server is not configured to allow selection, capture, and view of all events related to a user session, host, or device when required by authorized users, this is a finding.

Vulnerability Number

V-81141

Documentable

False

Rule Version

SRG-APP-000354-AU-000080

Severity Override Guidance

Examine the configuration.

Verify the system is configured to allow selection, capture, and view of all events related to a user session, host, or device when required by authorized users.

If the Central Log Server is not configured to allow selection, capture, and view of all events related to a user session, host, or device when required by authorized users, this is a finding.

Check Content Reference

M

Target Key

3395

Comments