The Cisco switch must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-220550 | CISC-ND-001040 | SV-220550r508596_rule | Medium |
| Description |
|---|
| Without sufficient granularity of time stamps, it is not possible to adequately determine the chronological order of records. Time stamps generated by the application include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks. |
| STIG | Date |
|---|---|
| Cisco IOS XE Switch NDM Security Technical Implementation Guide | 2021-09-16 |
Details
| Check Text ( C-22265r508594_chk ) |
|---|
| Review the Cisco switch configuration to verify that it is compliant with this requirement as shown in the example below: service timestamps log datetime If the switch is not configured to record time stamps that meet a granularity of one second, this is a finding. |
| Fix Text (F-22254r508595_fix) |
|---|
| Configure the Cisco switch to record time stamps that meet a granularity of one second as shown in the example below: SW2(config)#service timestamps log datetime localtime |