UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The network device must be configured to alert organization-defined personnel or roles upon detection of unauthorized access, modification, or deletion of audit information.


Overview

Finding ID Version Rule ID IA Controls Severity
V-264293 SRG-APP-000795-NDM-000130 SV-264293r984120_rule Medium
Description
Audit information includes all information needed to successfully audit system activity, such as audit records, audit log settings, audit reports, and personally identifiable information. Audit logging tools are those programs and devices used to conduct system audit and logging activities. Protection of audit information focuses on technical protection and limits the ability to access and execute audit logging tools to authorized individuals. Physical protection of audit information is addressed by both media protection controls and physical and environmental protection controls.
STIG Date
Network Device Management Security Requirements Guide 2024-05-30

Details

Check Text ( C-68206r984118_chk )
Verify the network device is configured to alert organization-defined personnel or roles upon detection of unauthorized access, modification, or deletion of audit information.

If the network device is not configured to alert organization-defined personnel or roles upon detection of unauthorized access, modification, or deletion of audit information, this is a finding.
Fix Text (F-68114r984119_fix)
Configure the network device to alert organization-defined personnel or roles upon detection of unauthorized access, modification, or deletion of audit information.