Free DISA STIG and SRG Library | Vaulted

V-216536

The Cisco router must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision.

Finding ID
CISC-ND-001040
Rule ID
SV-216536r531088_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-APP-000375-NDM-000300
CCI
CCI-001889
Target Key
(None)
Documentable
No
Discussion

Without sufficient granularity of time stamps, it is not possible to adequately determine the chronological order of records. Time stamps generated by the application include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks.

Fix Text

Configure the Cisco router to record time stamps that meet a granularity of one second as shown in the example below. RP/0/0/CPU0:R3(config)#service timestamps log datetime localtime

Check Content

Review the Cisco router configuration to verify that it is compliant with this requirement as shown in the example below. hostname R3 service timestamps log datetime localtime If the router is not configured to record time stamps that meet a granularity of one second, this is a finding.