Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Audit data must be retained for at least one year.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-226122 | WN12-AU-000201 | SV-226122r569184_rule | Medium |
| Description |
|---|
| Audit records are essential for investigating system activity after the fact. Retention periods for audit data are determined based on the sensitivity of the data handled by the system. |
| STIG | Date |
|---|---|
| Microsoft Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide | 2020-10-15 |
Details
| Check Text ( C-27824r475689_chk ) |
|---|
| Determine whether audit data is retained for at least one year. If the audit data is not retained for at least a year, this is a finding. |
| Fix Text (F-27812r475690_fix) |
|---|
| Ensure the audit data is retained for at least a year. |