The system must alert an administrator when low resource conditions are encountered.

Severity	Group ID	Group Title	Version	Rule ID	Date	STIG Version
medium	V-222668	SRG-APP-000516	APSC-DV-003330	SV-222668r961863_rule	2025-02-12	6

Description
In order to prevent DoS type attacks, applications should be monitored when resource conditions reach a predefined threshold. This could indicate the onset of a DoS attack or could be the precursor to an application outage.

ℹ️ Check
Review the system documentation and interview the application and system administrators. Examine the system to determine if an automated, continuous on-line monitoring and audit trail creation capability is present with the capability to immediately alert personnel of any unusual or inappropriate activity with potential IA implications, and with a user configurable capability to automatically disable the system if serious IA violations are detected. If this monitoring capability does not exist, this is a finding.

ℹ️ Check

Review the system documentation and interview the application and system administrators. Examine the system to determine if an automated, continuous on-line monitoring and audit trail creation capability is present with the capability to immediately alert personnel of any unusual or inappropriate activity with potential IA implications, and with a user configurable capability to automatically disable the system if serious IA violations are detected. If this monitoring capability does not exist, this is a finding.

✔️ Fix
Implement mechanisms to alert system administrators about a low resource condition.