Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Audit records must be backed up onto a different system or media than the system being audited.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-226123 | WN12-AU-000203-01 | SV-226123r877390_rule | Medium |
| Description |
|---|
| Protection of log data includes assuring the log data is not accidentally lost or deleted. Audit information stored in one location is vulnerable to accidental or incidental deletion or alteration. |
| STIG | Date |
|---|---|
| Microsoft Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide | 2023-02-27 |
Details
| Check Text ( C-27825r475692_chk ) |
|---|
| Determine if a process to back up log data to a different system or media than the system being audited has been implemented. If it has not, this is a finding. |
| Fix Text (F-27813r475693_fix) |
|---|
| Establish and implement a process for backing up log data to another system or media other than the system being audited. |