The network element must provide an audit reduction capability.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-27123	SRG-NET-000093	SV-34420r1_rule		Medium

Description
to know what is being done, what attempted to be done, where it was done, when it was done, and by whom in order to compile an accurate risk assessment. Logging the actions of specific events provides a means to investigate an attack, recognize resource utilization or capacity thresholds, or to simply identify an improperly configured network element. In order to determine what is happening within the network infrastructure or to resolve and trace an attack, it is imperative to correlate the log data from multiple network elements acquiring a clear understanding as to what happened or is happening. Collecting log data and aggregating it to present the data in a single, consolidated view achieves this objective.

Description

to know what is being done, what attempted to be done, where it was done, when it was done, and by whom in order to compile an accurate risk assessment. Logging the actions of specific events provides a means to investigate an attack, recognize resource utilization or capacity thresholds, or to simply identify an improperly configured network element. In order to determine what is happening within the network infrastructure or to resolve and trace an attack, it is imperative to correlate the log data from multiple network elements acquiring a clear understanding as to what happened or is happening. Collecting log data and aggregating it to present the data in a single, consolidated view achieves this objective.

STIG	Date
Network Security Requirements Guide	2011-12-28

Details

Check Text ( None )
None

Fix Text (None)
None