UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The UEM Agent must be configured to enable the following function: read audit logs of the managed endpoint device.


Overview

Finding ID Version Rule ID IA Controls Severity
V-234237 SRG-APP-000089-UEM-100012 SV-234237r617354_rule Medium
Description
Audit logs and alerts enable monitoring of security-relevant events and subsequent forensics when breaches occur. They help identify when the security posture of the device is not as expected. This enables the UEM administrator to take an appropriate remedial action. Satisfies: FMT_SMF_EXT.4.1 Reference: PP-UEM-401005
STIG Date
Unified Endpoint Management Agent Security Requirements Guide 2020-12-14

Details

Check Text ( C-37422r612017_chk )
Verify the UEM Agent has enabled the following function: read audit logs of the managed endpoint device.

If the UEM Agent has not enabled the following function: read audit logs of the managed endpoint device, this is a finding.
Fix Text (F-37387r612018_fix)
Configure the UEM Agent to enable the following function: read audit logs of the managed endpoint device.