Configuration management solutions must track unauthorized, security-relevant configuration changes.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-35588	SRG-APP-000139-AS-NA	SV-46875r1_rule		Medium

Description
Configuration settings are the configurable security-related parameters of information technology products that are part of the information system. Incident Response teams require input from authoritative sources in order to investigate events that have occurred. Configuration management solutions are a logical source for providing information regarding system configuration changes. The AS is not a configuration management application. This requirement does not apply.

Description

Configuration settings are the configurable security-related parameters of information technology products that are part of the information system. Incident Response teams require input from authoritative sources in order to investigate events that have occurred. Configuration management solutions are a logical source for providing information regarding system configuration changes. The AS is not a configuration management application. This requirement does not apply.

STIG	Date
Application Server Security Requirements Guide	2013-01-08

Details

Check Text ( C-43930r1_chk )
This requirement is NA for the AS SRG.

Fix Text (F-40129r1_fix)
The requirement is NA. No fix is required.