UCF STIG Viewer Logo

Auditing must be implemented.


Overview

Finding ID Version Rule ID IA Controls Severity
V-811 GEN002660 SV-35269r1_rule ECAR-2 ECAR-1 ECAR-3 Medium
Description
Without auditing, individual system accesses cannot be tracked and malicious activity cannot be detected and traced back to an individual account.
STIG Date
HP-UX 11.23 Security Technical Implementation Guide 2015-12-02

Details

Check Text ( C-35101r1_chk )
Determine if auditing is enabled.
# audsys

If the audit service is not running, this is a finding.
Fix Text (F-30370r1_fix)
In order to turn auditing on, the system must first be in Trusted Mode. Next, turn on the auditing system. The system will use existing current and next audit trails (if configured).
# sam

Then:

Auditing and Security -> Audited Events -> Actions -> Turn Auditing On.