The Central Log Server must implement the capability to centrally review and analyze audit records from multiple components within the system.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-263558 | SRG-APP-000745 | SRG-APP-000745-AU-000120 | SV-263558r982403_rule | 2024-12-04 | 3 |
| Description |
|---|
| Automated mechanisms for centralized reviews and analyses include security information and event management products. |
| ℹ️ Check |
|---|
| Verify the Central Log Server is configured to implement the capability to centrally review and analyze audit records from multiple components within the system. If the Central Log Server is not configured to implement the capability to centrally review and analyze audit records from multiple components within the system, this is a finding. |
| ✔️ Fix |
|---|
| Configure the Central Log Server to implement the capability to centrally review and analyze audit records from multiple components within the system. |