1.029 - Audit logs will be reviewed on a daily basis.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

To be of value, audit logs from servers and other critical systems will be reviewed on a daily basis to identify security breaches and potential weaknesses in the security structure. This can be done with the use of monitoring software or other utilities for this purpose.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Create a site policy that mandates review of audit logs.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2008_R2_MS_V1R33_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000366, Rule-ID|SV-32267r2_rule, STIG-ID|1.029, Vuln-ID|V-3491

Plugin: Windows

Control ID: b97fb9744e14dfbd2c1881c35a21ca3745b74f38ced0759bd5f0992e256ffd7c