Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-225308 | WN12-AU-000203-01 | SV-225308r877390_rule | Medium |
Description |
---|
Protection of log data includes assuring the log data is not accidentally lost or deleted. Audit information stored in one location is vulnerable to accidental or incidental deletion or alteration. |
STIG | Date |
---|---|
Microsoft Windows Server 2012/2012 R2 Member Server Security Technical Implementation Guide | 2023-02-27 |
Check Text ( C-27007r471266_chk ) |
---|
Determine if a process to back up log data to a different system or media than the system being audited has been implemented. If it has not, this is a finding. |
Fix Text (F-26995r471267_fix) |
---|
Establish and implement a process for backing up log data to another system or media other than the system being audited. |