Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
Item Search
Audits
Item Search
Filters (1)
Description
Filename
Plugin
References
Control ID
Relevance
Description
Plugin
Filename
References (Active)
Search by References
Clear All
‹‹ Previous
Previous
Page 1 of 20
• 973 Total
Next
Next ››
Name
Audit Name
Plugin
Category
3.200 - The system must be configured to use the au-remote plugin.
Tenable Fedora Linux Best Practices v2.0.0
Unix
AUDIT AND ACCOUNTABILITY
3.201 - The system must configure the au-remote plugin to off-load audit logs using the audisp-remote daemon - direction
Tenable Fedora Linux Best Practices v2.0.0
Unix
AUDIT AND ACCOUNTABILITY
3.201 - The system must configure the au-remote plugin to off-load audit logs using the audisp-remote daemon - path
Tenable Fedora Linux Best Practices v2.0.0
Unix
AUDIT AND ACCOUNTABILITY
3.201 - The system must configure the au-remote plugin to off-load audit logs using the audisp-remote daemon - type
Tenable Fedora Linux Best Practices v2.0.0
Unix
AUDIT AND ACCOUNTABILITY
3.0210 - The system must take appropriate action when the audisp-remote buffer is full.
Tenable Fedora Linux Best Practices v2.0.0
Unix
AUDIT AND ACCOUNTABILITY
3.0211 - The system must label all off-loaded audit logs before sending them to the central log server.
Tenable Fedora Linux Best Practices v2.0.0
Unix
AUDIT AND ACCOUNTABILITY
Big Sur - Off-Load Audit Records
NIST macOS Big Sur v1.4.0 - All Profiles
Unix
AUDIT AND ACCOUNTABILITY
CASA-ND-001260 - The Cisco ASA must be configured to offload audit records onto a different system or media than the system being audited - logging trap
DISA STIG Cisco ASA NDM v1r1
Cisco
CASA-ND-001410 - The Cisco ASA must be configured to send log data to at least two central log servers for the purpose of forwarding alerts to organization-defined personnel and/or the firewall administrator - logging trap
DISA STIG Cisco ASA NDM v1r5
Cisco
Catalina - Off-Load Audit Records
NIST macOS Catalina v1.5.0 - All Profiles
Unix
AUDIT AND ACCOUNTABILITY
MADB-10-012400 - MariaDB must off-load audit data to a separate log management facility; this must be continuous and in near real time for systems with a network connection to the storage facility and weekly or more often for stand-alone systems.
DISA MariaDB Enterprise 10.x v1r2 DB
MySQLDB
Monterey - Off-Load Audit Records
NIST macOS Monterey v1.0.0 - All Profiles
Unix
AUDIT AND ACCOUNTABILITY
MYS8-00-009700 - The MySQL Database Server 8.0 must off-load audit data to a separate log management facility; this must be continuous and in near real time for systems with a network connection to the storage facility and weekly or more often for stand-alone systems.
DISA Oracle MySQL 8.0 v1r4 DB
MySQLDB
OL08-00-030062 - OL 8 must label all offloaded audit logs before sending them to the central log server.
DISA Oracle Linux 8 STIG v1r4
Unix
OL08-00-030690 - The OL 8 audit records must be offloaded onto a different system or storage media from the system being audited.
DISA Oracle Linux 8 STIG v1r2
Unix
OL08-00-030710 - OL 8 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited - ActionSendStreamDriverMode
DISA Oracle Linux 8 STIG v1r6
Unix
OL08-00-030710 - OL 8 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited - DefaultNetstreamDriver
DISA Oracle Linux 8 STIG v1r6
Unix
OL08-00-030710 - OL 8 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited. - ActionSendStreamDriverMode
DISA Oracle Linux 8 STIG v1r1
Unix
OL08-00-030710 - OL 8 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited. - DefaultNetstreamDriver
DISA Oracle Linux 8 STIG v1r1
Unix
OL08-00-030720 - OL 8 must authenticate the remote logging server for offloading audit logs.
DISA Oracle Linux 8 STIG v1r1
Unix
OL08-00-030720 - OL 8 must authenticate the remote logging server for offloading audit logs.
DISA Oracle Linux 8 STIG v1r2
Unix
RHEL-08-030062 - RHEL 8 must label all off-loaded audit logs before sending them to the central log server.
DISA Red Hat Enterprise Linux 8 STIG v1r1
Unix
RHEL-08-030062 - RHEL 8 must label all off-loaded audit logs before sending them to the central log server.
DISA Red Hat Enterprise Linux 8 STIG v1r8
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r1
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r11
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r3
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r5
Unix
RHEL-08-030700 - RHEL 8 must take appropriate action when the internal event queue is full.
DISA Red Hat Enterprise Linux 8 STIG v1r3
Unix
RHEL-08-030700 - RHEL 8 must take appropriate action when the internal event queue is full.
DISA Red Hat Enterprise Linux 8 STIG v1r13
Unix
RHEL-08-030710 - RHEL 8 must encrypt the transfer of audit records off-loaded onto a different system or media from the system being audited - DefaultNetstreamDriver
DISA Red Hat Enterprise Linux 8 STIG v1r6
Unix
RHEL-08-030720 - RHEL 8 must authenticate the remote logging server for off-loading audit logs.
DISA Red Hat Enterprise Linux 8 STIG v1r1
Unix
RHEL-08-030720 - RHEL 8 must authenticate the remote logging server for off-loading audit logs.
DISA Red Hat Enterprise Linux 8 STIG v1r7
Unix
RHEL-09-652040 - RHEL 9 must authenticate the remote logging server for offloading audit logs via rsyslog.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
RHEL-09-652040 - RHEL 9 must authenticate the remote logging server for offloading audit logs via rsyslog.
DISA Red Hat Enterprise Linux 9 STIG v1r2
Unix
RHEL-09-652050 - RHEL 9 must encrypt via the gtls driver the transfer of audit records offloaded onto a different system or media from the system being audited via rsyslog.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
RHEL-09-653065 - RHEL 9 must take appropriate action when the internal event queue is full.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
SLES-15-010580 - The SUSE operating system must off-load rsyslog messages for networked systems in real time and off-load standalone systems at least weekly.
DISA SLES 15 STIG v1r10
Unix
SLES-15-030670 - The audit-audispd-plugins must be installed on the SUSE operating system - audit-audispd-plugins
DISA SLES 15 STIG v1r6
Unix
SLES-15-030670 - The audit-audispd-plugins must be installed on the SUSE operating system - audit-audispd-plugins
DISA SLES 15 STIG v1r9
Unix
SLES-15-030680 - The SUSE operating system audit event multiplexor must be configured to use Kerberos.
DISA SLES 15 STIG v1r6
Unix
SLES-15-030790 - The SUSE operating system must off-load audit records onto a different system or media from the system being audited.
DISA SLES 15 STIG v1r9
Unix
SLES-15-030790 - The SUSE operating system must off-load audit records onto a different system or media from the system being audited.
DISA SLES 15 STIG v1r10
Unix
SLES-15-030790 - The SUSE operating system must off-load audit records onto a different system or media from the system being audited.
DISA SLES 15 STIG v1r12
Unix
SPLK-CL-000150 - Splunk Enterprise must be configured to offload log records onto a different system or media than the system being audited.
DISA STIG Splunk Enterprise 8.x for Linux v1r3 STIG REST API
Splunk
UBTU-20-010300 - The Ubuntu operating system must have a crontab script running weekly to offload audit events of standalone systems.
DISA STIG Ubuntu 20.04 LTS v1r1
Unix
UBTU-20-010300 - The Ubuntu operating system must have a crontab script running weekly to offload audit events of standalone systems.
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
VCRP-67-000009 - The rhttpproxy log files must be moved to a permanent repository in accordance with site policy.
DISA STIG VMware vSphere 6.7 RhttpProxy v1r1
Unix
WN22-AU-000010 - Windows Server 2022 audit records must be backed up to a different system or media than the system being audited.
DISA Windows Server 2022 STIG v1r4
Windows
WN22-AU-000020 - Windows Server 2022 must, at a minimum, offload audit records of interconnected systems in real time and offload standalone or nondomain-joined systems weekly.
DISA Windows Server 2022 STIG v1r1
Windows
WN22-AU-000020 - Windows Server 2022 must, at a minimum, offload audit records of interconnected systems in real time and offload standalone or nondomain-joined systems weekly.
DISA Windows Server 2022 STIG v1r3
Windows
‹‹ Previous
Previous
Page 1 of 20
• 973 Total
Next
Next ››
