Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
Item Search
Audits
Item Search
Filters (1)
Description
Filename
Plugin
References
Control ID
Relevance
Description
Plugin
Filename
References (Active)
Search by References
Clear All
‹‹ Previous
Previous
Page 3 of 22
• 1071 Total
Next
Next ››
Name
Audit Name
Plugin
Category
CASA-ND-001260 - The Cisco ASA must be configured to offload audit records onto a different system or media than the system being audited - logging host
DISA STIG Cisco ASA NDM v1r1
Cisco
CASA-ND-001260 - The Cisco ASA must be configured to offload audit records onto a different system or media than the system being audited - logging trap
DISA STIG Cisco ASA NDM v1r6
Cisco
CASA-ND-001410 - The Cisco ASA must be configured to send log data to a central log server for the purpose of forwarding alerts to organization-defined personnel and/or the firewall administrator - logging host
DISA STIG Cisco ASA NDM v1r3
Cisco
CASA-ND-001410 - The Cisco ASA must be configured to send log data to a central log server for the purpose of forwarding alerts to organization-defined personnel and/or the firewall administrator - logging trap
DISA STIG Cisco ASA NDM v1r3
Cisco
CISC-ND-001310 - The Cisco switch must be configured to off-load log records onto a different system than the system being audited - logging host
DISA STIG Cisco IOS XE Switch NDM v1r1
Cisco
FGFW-ND-000110 - The FortiGate device must off-load audit records on to a different system or media than the system being audited.
DISA Fortigate Firewall NDM STIG v1r1
FortiGate
FGFW-ND-000110 - The FortiGate device must off-load audit records on to a different system or media than the system being audited.
DISA Fortigate Firewall NDM STIG v1r3
FortiGate
JUEX-NM-000600 - The Juniper EX switch must be configured to offload audit records onto a different system or media than the system being audited.
DISA Juniper EX Series Network Device Management v1r5
Juniper
JUEX-NM-000600 - The Juniper EX switch must be configured to offload audit records onto a different system or media than the system being audited.
DISA Juniper EX Series Network Device Management v1r4
Juniper
MADB-10-012400 - MariaDB must off-load audit data to a separate log management facility; this must be continuous and in near real time for systems with a network connection to the storage facility and weekly or more often for stand-alone systems.
DISA MariaDB Enterprise 10.x v1r3 DB
MySQLDB
MYS8-00-009700 - The MySQL Database Server 8.0 must off-load audit data to a separate log management facility; this must be continuous and in near real time for systems with a network connection to the storage facility and weekly or more often for stand-alone systems.
DISA Oracle MySQL 8.0 v1r3 DB
MySQLDB
OL08-00-030062 - OL 8 must label all offloaded audit logs before sending them to the central log server.
DISA Oracle Linux 8 STIG v1r8
Unix
OL08-00-030062 - OL 8 must label all offloaded audit logs before sending them to the central log server.
DISA Oracle Linux 8 STIG v1r9
Unix
OL08-00-030690 - The OL 8 audit records must be offloaded onto a different system or storage media from the system being audited.
DISA Oracle Linux 8 STIG v1r1
Unix
OL08-00-030690 - The OL 8 audit records must be offloaded onto a different system or storage media from the system being audited.
DISA Oracle Linux 8 STIG v1r7
Unix
OL08-00-030700 - OL 8 must take appropriate action when the internal event queue is full.
DISA Oracle Linux 8 STIG v1r1
Unix
OL08-00-030710 - OL 8 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited - DefaultNetstreamDriver
DISA Oracle Linux 8 STIG v1r2
Unix
RHEL-08-030062 - RHEL 8 must label all off-loaded audit logs before sending them to the central log server.
DISA Red Hat Enterprise Linux 8 STIG v1r11
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r13
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r6
Unix
RHEL-08-030690 - The RHEL 8 audit records must be off-loaded onto a different system or storage media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r7
Unix
RHEL-08-030700 - RHEL 8 must take appropriate action when the internal event queue is full.
DISA Red Hat Enterprise Linux 8 STIG v1r8
Unix
RHEL-08-030700 - RHEL 8 must take appropriate action when the internal event queue is full.
DISA Red Hat Enterprise Linux 8 STIG v1r1
Unix
RHEL-08-030710 - RHEL 8 must encrypt the transfer of audit records off-loaded onto a different system or media from the system being audited - DefaultNetstreamDriver
DISA Red Hat Enterprise Linux 8 STIG v1r9
Unix
RHEL-08-030710 - RHEL 8 must encrypt the transfer of audit records off-loaded onto a different system or media from the system being audited.
DISA Red Hat Enterprise Linux 8 STIG v1r13
Unix
RHEL-08-030710 - RHEL 8 must encrypt the transfer of audit records off-loaded onto a different system or media from the system being audited. - DefaultNetstreamDriver
DISA Red Hat Enterprise Linux 8 STIG v1r1
Unix
RHEL-08-030720 - RHEL 8 must authenticate the remote logging server for off-loading audit logs.
DISA Red Hat Enterprise Linux 8 STIG v1r9
Unix
RHEL-08-030720 - RHEL 8 must authenticate the remote logging server for off-loading audit logs.
DISA Red Hat Enterprise Linux 8 STIG v1r11
Unix
RHEL-09-652045 - RHEL 9 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited via rsyslog.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
RHEL-09-653130 - RHEL 9 audispd-plugins package must be installed.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
SLES-15-030670 - The audit-audispd-plugins must be installed on the SUSE operating system.
DISA SLES 15 STIG v1r11
Unix
SLES-15-030680 - The SUSE operating system audit event multiplexor must be configured to use Kerberos.
DISA SLES 15 STIG v1r9
Unix
SLES-15-030690 - Audispd must off-load audit records onto a different system or media from the SUSE operating system being audited.
DISA SLES 15 STIG v1r6
Unix
SLES-15-030690 - Audispd must off-load audit records onto a different system or media from the SUSE operating system being audited.
DISA SLES 15 STIG v1r10
Unix
SLES-15-030790 - The SUSE operating system must off-load audit records onto a different system or media from the system being audited.
DISA SLES 15 STIG v1r13
Unix
SLES-15-030800 - Audispd must take appropriate action when the SUSE operating system audit storage is full.
DISA SLES 15 STIG v1r6
Unix
SLES-15-030800 - Audispd must take appropriate action when the SUSE operating system audit storage is full.
DISA SLES 15 STIG v1r11
Unix
SLES-15-030800 - Audispd must take appropriate action when the SUSE operating system audit storage is full.
DISA SLES 15 STIG v1r13
Unix
SPLK-CL-000150 - Splunk Enterprise must be configured to offload log records onto a different system or media than the system being audited.
DISA STIG Splunk Enterprise 8.x for Linux v1r4 STIG REST API
Splunk
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - active = yes
DISA STIG Ubuntu 20.04 LTS v1r4
Unix
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - active = yes
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - active = yes
DISA STIG Ubuntu 20.04 LTS v1r1
Unix
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - audispd-plugins
DISA STIG Ubuntu 20.04 LTS v1r4
Unix
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - audispd-plugins
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - remote_server
DISA STIG Ubuntu 20.04 LTS v1r4
Unix
UBTU-20-010216 - The Ubuntu operating system audit event multiplexor must be configured to off-load audit logs onto a different system or storage media from the system being audited - remote_server
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010300 - The Ubuntu operating system must have a crontab script running weekly to offload audit events of standalone systems.
DISA STIG Ubuntu 20.04 LTS v1r4
Unix
VCSA-70-000280 - The vCenter server must be configured to send events to a central log server.
DISA STIG VMware vSphere 7.0 vCenter v1r2
VMware
WN22-AU-000010 - Windows Server 2022 audit records must be backed up to a different system or media than the system being audited.
DISA Windows Server 2022 STIG v1r4
Windows
WN22-AU-000020 - Windows Server 2022 must, at a minimum, offload audit records of interconnected systems in real time and offload standalone or nondomain-joined systems weekly.
DISA Windows Server 2022 STIG v1r3
Windows
‹‹ Previous
Previous
Page 3 of 22
• 1071 Total
Next
Next ››
