The application server must initiate session auditing upon start up.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-35148 | SRG-APP-000092-AS-000053 | SV-46435r1_rule | Low |
| Description |
|---|
| Session auditing activities are developed, integrated, and used in consultation with legal counsel in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations. |
| STIG | Date |
|---|---|
| Application Server Security Requirements Guide | 2013-01-08 |
Details
| Check Text ( C-43534r1_chk ) |
|---|
| Review the AS product documentation and server configuration to determine if the AS initiates session auditing on AS startup. If the AS is not configured to meet this requirement, this is a finding. |
| Fix Text (F-39698r1_fix) |
|---|
| Configure the AS to initiate session auditing on AS startup. |