EP11-00-007800 - The EDB Postgres Advanced Server must provide centralized configuration of the content to be captured in audit records generated by all components of the EDB Postgres Advanced Server.

Information

If the configuration of the DBMS's auditing is spread across multiple locations in the database management software, or across multiple commands, only loosely related, it is harder to use and takes longer to reconfigure in response to events.

The DBMS must provide a unified tool for audit configuration.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

If managing multiple EDB Postgres Advanced Server clusters (i.e., instances), install a centralized audit log management tool and configure it as instructed in its documentation.

If using PEM, find the instructions at
https://www.enterprisedb.com/docs/en/7.0/pemgetstarted/toc.html

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_EDB_PGS_Advanced_Server_v11_Windows_V2R4_STIG.zip

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-3(2), CAT|II, CCI|CCI-001844, Rule-ID|SV-224196r981953_rule, STIG-ID|EP11-00-007800, STIG-Legacy|SV-109517, STIG-Legacy|V-100413, Vuln-ID|V-224196

Plugin: PostgreSQLDB

Control ID: 62cf8650437f22c8295187492ceda299bbc964e836bebee9112508f6d0c7df81