Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The IDPS must assign a critical severity level to all audit processing failures.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-55329 | SRG-NET-000335-IDPS-00223 | SV-69575r1_rule | Medium |
| Description |
|---|
| It is critical that when the IDPS is at risk of failing to process audit logs as required, it takes action to mitigate the failure Audit processing failures include: software/hardware errors; failures in the audit capturing mechanisms; and audit storage capacity being reached or exceeded. Since action must be taken immediately, these messages will be designated as a critical severity level and this level must be sent as part of the alert message. |
| STIG | Date |
|---|---|
| Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide | 2017-07-07 |
Details
| Check Text ( C-55951r1_chk ) |
|---|
| Verify the IDPS provides assign a critical severity level to all audit processing failures. If the IDPS does not assign a critical severity level to all audit processing failures, this is a finding. |
| Fix Text (F-60195r1_fix) |
|---|
| Configure the IDPS to assign a critical severity level to all audit processing failures. |