Free DISA STIG and SRG Library | Vaulted

V-74075

The Cisco IOSISR XE4000 Series router must off-load audit records onto a different system or media than the system being audited.

Finding ID
CISR-ND-000128
Rule ID
SV-88749r2_rule88749r1_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-APP-000515-NDM-000325
CCI
CCI-001851
Target Key
(None)
Documentable
No
Discussion

Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity.

Fix Text

Configure the Cisco IOSISR XE4000 Series router to enable syslog. The configuration should look similar to the example below: logging host 1.1.1.1

Check Content

Verify that the Cisco IOSISR XE4000 Series router is configured to send logs to a syslog server. The configuration should look similar to the example below: logging host 1.1.1.1 If it is not configured to send logs to a syslog server, this is a finding.