UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The UEM server must be configured to produce audit records containing information to establish where the events occurred.


Overview

Finding ID Version Rule ID IA Controls Severity
V-234330 SRG-APP-000097-UEM-000057 SV-234330r617355_rule Medium
Description
Failure to generate these audit records makes it more difficult to identify or investigate attempted or successful compromises, potentially causing incidents to last longer than necessary. Satisfies:FAU_GEN.1.2(1) Reference:PP-MDM-412060
STIG Date
Unified Endpoint Management Server Security Requirements Guide 2020-12-14

Details

Check Text ( C-37515r614000_chk )
Verify the UEM server produces audit records containing information to establish where the events occurred.

If the UEM server does not produce audit records containing information to establish where the events occurred, this is a finding.
Fix Text (F-37480r614001_fix)
Configure the UEM server to be configured to produce audit records containing information to establish where the events occurred.