Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-234500 | SRG-APP-000358-UEM-000228 | SV-234500r617411_rule | Medium |
Description |
---|
Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity. Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices. Satisfies:FMT_SMF.1.1(2) c.8, FAU_STG_EXT.1.1(1) Reference:PP-MDM-411054 |
STIG | Date |
---|---|
Unified Endpoint Management Server Security Requirements Guide | 2020-12-14 |
Check Text ( C-37685r615967_chk ) |
---|
Verify the UEM server transfers UEM server logs to another server for storage, analysis, and reporting. If the UEM server does not transfer UEM server logs to another server for storage, analysis, and reporting, this is a finding. Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices. |
Fix Text (F-37650r615144_fix) |
---|
Configure the UEM server to be configured to transfer UEM server logs to another server for storage, analysis, and reporting. Note: UEM server logs include logs of UEM events and logs transferred to the UEM server by UEM agents of managed devices. |