CCI|CCI-000140

Title

The information system takes organization-defined actions upon audit failure (e.g., shut down information system, overwrite oldest audit records, stop generating audit records).

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
AOSX-09-001355 - The operating system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.9 v1r2
AOSX-10-001355 - The operating system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.10 v1r5
AOSX-11-001355 - The operating system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.11 v1r6
AOSX-12-001355 - The OS X system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.12 v1r6
AOSX-13-001355 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.13 v2r3
AOSX-13-001355 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.13 v2r1
AOSX-13-001355 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.14 v2r4
AOSX-14-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.14 v2r5
AOSX-14-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.14 v2r1
AOSX-14-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.15 v1r5
AOSX-15-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.15 v1r7
AOSX-15-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.15 v1r3
AOSX-15-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple Mac OSX 10.15 v1r8
APPL-11-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 11 v1r6
APPL-11-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 11 v1r1
APPL-11-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 11 v1r5
APPL-11-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 11 v1r7
APPL-11-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 11 v1r8
APPL-11-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 11 v1r3
APPL-12-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 12 V1R2
APPL-12-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 12 v1r3
APPL-12-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 12 v1r8
APPL-12-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 12 v1r4
APPL-12-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 12 v1r5
APPL-12-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 12 v1r7
APPL-13-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 13 v1r2
APPL-13-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 13 v1r1
APPL-13-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 13 v1r3
APPL-13-001010 - The macOS system must shut down by default upon audit failure (unless availability is an overriding concern).	Unix	DISA STIG Apple macOS 13 v1r4
APPL-14-001010 - The macOS system must configure system to shut down upon audit failure.	Unix	DISA Apple macOS 14 (Sonoma) STIG v1r2
APPL-14-001031 - The macOS system must configure audit failure notification.	Unix	DISA Apple macOS 14 (Sonoma) STIG v1r2
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 Low
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 Low
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Configure System to Shut Down Upon Audit Failure	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 High
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable - Buffer Enabled	Cisco	DISA STIG Cisco ASA FW v1r3
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable - Buffer Enabled	Cisco	DISA STIG Cisco ASA FW v1r2
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable - Buffer Enabled	Cisco	DISA STIG Cisco ASA FW v1r4
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable - Queue	Cisco	DISA STIG Cisco ASA FW v1r4
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable - Queue	Cisco	DISA STIG Cisco ASA FW v1r3
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable - Queue	Cisco	DISA STIG Cisco ASA FW v1r2
CASA-FW-000090 - The Cisco ASA must be configured to queue log records locally in the event that the central audit server is down or not reachable. - Buffer Enabled	Cisco	DISA STIG Cisco ASA FW v1r1

Detections

Analytics

CCI|CCI-000140

Title

Reference Item Details

Audit Items