Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Audit data of systems containing sources and methods intelligence (SAMI) must be retained for at least five years.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| WN12-AU-000202 | WN12-AU-000202 | WN12-AU-000202_rule | Medium |
| Description |
|---|
| Audit records are essential for investigating system activity after the fact. Retention periods for audit data are determined based on the sensitivity of the data handled by the system. |
| STIG | Date |
|---|---|
| Microsoft Windows Server 2012 Domain Controller Security Technical Implementation Guide | 2013-07-25 |
Details
| Check Text ( C-WN12-AU-000202_chk ) |
|---|
| Determine whether the organization has a policy that requires audit data containing SAMI to be retained for at least five years. If SAMI data is not retained for this period, this is a finding. If audit data does not contain SAMI data, this is NA. |
| Fix Text (F-WN12-AU-000202_fix) |
|---|
| Establish a policy that will ensure the retention of SAMI audit data for at least five years. Ensure the audit retention policy is implemented. |