The operating system must provide a report generation capability that supports on-demand audit review and analysis.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-57257	SRG-OS-000350-GPOS-00138	SV-71517r1_rule		Medium

Description
The report generation capability must support on-demand review and analysis in order to facilitate the organization's ability to generate incident reports, as needed, to better handle larger-scale or more complex security incidents. Report generation must be capable of generating on-demand (i.e., customizable, ad hoc, and as-needed) reports. On-demand reporting allows personnel to report issues more rapidly to more effectively meet reporting requirements. Collecting log data and aggregating it to present the data in a single, consolidated report achieves this objective.

Description

The report generation capability must support on-demand review and analysis in order to facilitate the organization's ability to generate incident reports, as needed, to better handle larger-scale or more complex security incidents. Report generation must be capable of generating on-demand (i.e., customizable, ad hoc, and as-needed) reports. On-demand reporting allows personnel to report issues more rapidly to more effectively meet reporting requirements. Collecting log data and aggregating it to present the data in a single, consolidated report achieves this objective.

STIG	Date
General Purpose Operating System SRG	2019-07-01

Details

Check Text ( C-57867r1_chk )
Verify the operating system provides a report generation capability that supports on-demand audit review and analysis. If it does not, this is a finding.

Fix Text (F-62191r1_fix)
Configure the operating system to provide a report generation capability that supports on-demand audit review and analysis.