The audit system must be configured to audit login, logout, and session initiation.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
GEN002800-ESXI5-PNF	GEN002800-ESXI5-PNF	GEN002800-ESXI5-PNF_rule		Medium

Description
If the system is not configured to audit certain activities and write them to an audit log, it is more difficult to detect and track system compromises and damages incurred during a system compromise. Permanent not a finding - Auditing is implemented by default. Auditing cannot be configured/implemented like a typical UNIX system. Auditing is turned on by default, as is logging. Syslog is the best way to ensure all access is logged.

Description

If the system is not configured to audit certain activities and write them to an audit log, it is more difficult to detect and track system compromises and damages incurred during a system compromise. Permanent not a finding - Auditing is implemented by default. Auditing cannot be configured/implemented like a typical UNIX system. Auditing is turned on by default, as is logging. Syslog is the best way to ensure all access is logged.

STIG	Date
VMware ESXi v5 Security Technical Implementation Guide	2013-01-15

Details

Check Text ( C-GEN002800-ESXI5-PNF_chk )
ESXi supports this requirement and cannot be configured to be out of compliance. This is a permanent not a finding.

Fix Text (F-GEN002800-ESXI5-PNF_fix)
This requirement is permanent not a finding. No fix is required.