Free DISA STIG and SRG Library | Vaulted

V-35148

The application server must initiate session logging upon startup.

Finding ID
SRG-APP-000092-AS-000053
Rule ID
SV-46435r3_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-APP-000092-AS-000053
CCI
CCI-001464
Target Key
(None)
Documentable
No
Discussion

Session logging activities are developed, integrated, and used in consultation with legal counsel in accordance with applicable federal laws, Executive Orders, directives, policies, or regulations.

Fix Text

Configure the application server to initiate session logging on application server startup.

Check Content

Review the application server product documentation and server configuration to determine if the application server initiates session logging on application server startup. If the application server is not configured to meet this requirement, this is a finding.