The network element must protect audit tools from unauthorized access.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000101-FW-NA	SRG-NET-000101-FW-NA	SRG-NET-000101-FW-NA_rule		Low

Description
Logging the actions of specific events provides a means to investigate an attack, recognize resource utilization or capacity thresholds, or to simply identify an improperly configured network element. Auditing tools must be secured and can only be accessed by authorized on to prevent unauthorized modification and the ability to perform forensic and other analyses. Protection of audit tools is not a function of the firewall. Installation of non-firewall functionality is discouraged.

Description

Logging the actions of specific events provides a means to investigate an attack, recognize resource utilization or capacity thresholds, or to simply identify an improperly configured network element. Auditing tools must be secured and can only be accessed by authorized on to prevent unauthorized modification and the ability to perform forensic and other analyses. Protection of audit tools is not a function of the firewall. Installation of non-firewall functionality is discouraged.

STIG	Date
Firewall Security Requirements Guide	2012-12-10

Details

Check Text ( C-SRG-NET-000101-FW-NA_chk )
This requirement is NA for firewall. No fix required.

Fix Text (F-SRG-NET-000101-FW-NA_fix)
This requirement is NA for firewall. No fix required.