The network element must produce log records that contain detailed information for events identified by type location and subject.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-33981	SRG-NET-000080-DNS-NA	SV-44434r1_rule		Medium

Description
Information system auditing capability is critical for accurate forensic analysis. Audit record content that may be necessary to satisfy the requirement of this control, includes, for example, time stamps, source and destination addresses, user/process identifiers, event descriptions, success/fail indications, filenames involved, and access control or flow control rules invoked. Individual auditing requirements are met by other specific IA controls. SRG-NET-000076-DNS-000036, SRG-NET-000077-DNS-000037, SRG-NET-000078-DNS-000038, and SRG-NET-000079-000039.

Description

Information system auditing capability is critical for accurate forensic analysis. Audit record content that may be necessary to satisfy the requirement of this control, includes, for example, time stamps, source and destination addresses, user/process identifiers, event descriptions, success/fail indications, filenames involved, and access control or flow control rules invoked. Individual auditing requirements are met by other specific IA controls. SRG-NET-000076-DNS-000036, SRG-NET-000077-DNS-000037, SRG-NET-000078-DNS-000038, and SRG-NET-000079-000039.

STIG	Date
Domain Name System (DNS) Security Requirements Guide	2012-10-24

Details

Check Text ( C-41985r1_chk )
This requirement is met by other IA controls.

Fix Text (F-37896r1_fix)
This requirement is met by other IA controls. No fix required.