The operating system must provide audit record generation capability for the auditable events defined in at the organizational level for the organization-defined information system components.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-OS-000062-ESXI5-PNF	SRG-OS-000062-ESXI5-PNF	SRG-OS-000062-ESXI5-PNF_rule		Medium

Description
The list of audited events is the set of events for which audits are to be generated. This set of events is typically a subset of the list of all events for which the system is capable of generating audit records (i.e., auditable events) for example, time stamps, source and destination addresses, user/process identifiers, event descriptions, success/fail indications, filenames involved, and access control or flow control rules invoked. Permanent not a finding - Auditing cannot be configured/implemented like a typical UNIX system. Duplicate of GEN002660.

Description

The list of audited events is the set of events for which audits are to be generated. This set of events is typically a subset of the list of all events for which the system is capable of generating audit records (i.e., auditable events) for example, time stamps, source and destination addresses, user/process identifiers, event descriptions, success/fail indications, filenames involved, and access control or flow control rules invoked. Permanent not a finding - Auditing cannot be configured/implemented like a typical UNIX system. Duplicate of GEN002660.

STIG	Date
VMware ESXi v5 Security Technical Implementation Guide	2013-01-15

Details

Check Text ( C-SRG-OS-000062-ESXI5-PNF_chk )
ESXi supports this requirement and cannot be configured to be out of compliance. This is a permanent not a finding.

Fix Text (F-SRG-OS-000062-ESXI5-PNF_fix)
This requirement is permanent not a finding. No fix is required.