Free DISA STIG and SRG Library | Vaulted

V-56799

The operating system must provide an audit reduction capability that supports on-demand reporting requirements.

Finding ID
SRG-OS-000122-GPOS-00063
Rule ID
SV-71059r1_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-OS-000122-GPOS-00063
CCI
CCI-001876
Target Key
(None)
Documentable
No
Discussion

The ability to generate on-demand reports, including after the audit data has been subjected to audit reduction, greatly facilitates the organization's ability to generate incident reports as needed to better handle larger-scale or more complex security incidents. Audit reduction is a process that manipulates collected audit information and organizes such information in a summary format that is more meaningful to analysts. The report generation capability provided by the application must support on-demand (i.e., customizable, ad hoc, and as-needed) reports.

Fix Text

Configure the operating system to provide an audit reduction capability that supports on-demand reporting requirements.

Check Content

Verify the operating system provides an audit reduction capability that supports on-demand reporting requirements. If it does not, this is a finding.