UCF STIG Viewer Logo

The CA API Gateway must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision.


Overview

Finding ID Version Rule ID IA Controls Severity
V-71547 CAGW-DM-000240 SV-86171r1_rule Low
Description
Without sufficient granularity of time stamps, it is not possible to adequately determine the chronological order of records. Time stamps generated by the application include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks.
STIG Date
CA API Gateway NDM Security Technical Implementation Guide 2016-09-20

Details

Check Text ( C-71919r1_chk )
Verify the Gateway (using ssgconfig) is configured to use multiple ntp sources using menu: 1) Configure system settings >> 1) Configure networking and system time settings.

Walk through the query process until being queried for time servers and verify the list of ntp servers is correct.

If the CA API Gateway is not configured to use multiple ntp sources, this is a finding.
Fix Text (F-77867r1_fix)
Configure the Gateway using ssgconfig to set multiple ntp sources using menu: 1) Configure system settings >> 1) Configure networking and system time settings.

Walk through the query process until being queried for time servers and insert a comma-separated list of ntp time servers.