CCI|CCI-001348

Title

The information system backs up audit records on an organization-defined frequency onto a different system or system component than the system or component being audited.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r7
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r5
AS24-W1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Windows	DISA STIG Apache Server 2.4 Windows Server v2r1
AS24-W1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Windows	DISA STIG Apache Server 2.4 Windows Server v2r2
AS24-W1-000210 - The log data and records from the Apache web server must be backed up onto a different system or media.	Windows	DISA STIG Apache Server 2.4 Windows Server v2r3
BIND-9X-001017 - The BIND 9.x server implementation must not be configured with a channel to send audit records to null.	Unix	DISA BIND 9.x STIG v2r3
BIND-9X-001017 - The BIND 9.x server implementation must not be configured with a channel to send audit records to null.	Unix	DISA BIND 9.x STIG v2r2
BIND-9X-001017 - The BIND 9.x server implementation must not be configured with a channel to send audit records to null.	Unix	DISA BIND 9.x STIG v1r9
BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - named syslog	Unix	DISA BIND 9.x STIG v1r9
BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - named syslog	Unix	DISA BIND 9.x STIG v2r2
BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - rsyslog/syslog	Unix	DISA BIND 9.x STIG v2r2
BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - rsyslog/syslog	Unix	DISA BIND 9.x STIG v1r9
BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - syslog	Unix	DISA BIND 9.x STIG v2r2
BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog.	Unix	DISA BIND 9.x STIG v2r3
BIND-9X-001041 - The BIND 9.x server implementation must be configured with a channel to send audit records to a local file.	Unix	DISA BIND 9.x STIG v1r9
BIND-9X-001041 - The BIND 9.x server implementation must be configured with a channel to send audit records to a local file.	Unix	DISA BIND 9.x STIG v2r3
BIND-9X-001041 - The BIND 9.x server implementation must be configured with a channel to send audit records to a local file.	Unix	DISA BIND 9.x STIG v2r2
BIND-9X-001042 - The BIND 9.x server implementation must maintain at least 3 file versions of the local log file.	Unix	DISA BIND 9.x STIG v1r9
BIND-9X-001042 - The BIND 9.x server implementation must maintain at least 3 file versions of the local log file.	Unix	DISA BIND 9.x STIG v2r2
BIND-9X-001042 - The BIND 9.x server implementation must maintain at least 3 file versions of the local log file.	Unix	DISA BIND 9.x STIG v2r3
EX13-CA-000085 - Exchange must have Audit data on separate partitions.	Windows	DISA Microsoft Exchange 2013 Client Access Server STIG v1r2
EX13-CA-000085 - Exchange must have Audit data on separate partitions.	Windows	DISA Microsoft Exchange 2013 Client Access Server STIG v1r3
EX13-CA-000085 - Exchange must have Audit data on separate partitions.	Windows	DISA Microsoft Exchange 2013 Client Access Server STIG v2r1
EX13-EG-000070 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5
EX13-EG-000070 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r4
EX13-MB-000080 - Exchange Audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2013 Mailbox Server STIG v1r6
EX13-MB-000080 - Exchange Audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r1
EX13-MB-000080 - Exchange Audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r2
EX16-ED-000140 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r5
EX16-ED-000140 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r1
EX16-ED-000140 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r3
EX16-ED-000140 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r2
EX16-ED-000140 - Exchange audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r4
EX16-MB-000160 - Exchange Audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Mailbox Server STIG v2r4
EX16-MB-000160 - Exchange Audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6
EX16-MB-000160 - Exchange Audit data must be on separate partitions.	Windows	DISA Microsoft Exchange 2016 Mailbox Server STIG v2r2
F5BI-DM-000085 - The BIG-IP appliance must be configured to back up audit records at least every seven (7) days onto a different system or system component than the system or component being audited.	F5	DISA F5 BIG-IP Device Management 11.x STIG v1r7
GEN002870 - The system must be configured to send audit records to a remote audit server - NFS	Unix	DISA STIG Solaris 10 X86 v2r4
GEN002870 - The system must be configured to send audit records to a remote audit server - NFS	Unix	DISA STIG Solaris 10 X86 v2r2
GEN002870 - The system must be configured to send audit records to a remote audit server - NFS	Unix	DISA STIG Solaris 10 SPARC v2r1
GEN002870 - The system must be configured to send audit records to a remote audit server - NFS	Unix	DISA STIG Solaris 10 X86 v2r1
GEN002870 - The system must be configured to send audit records to a remote audit server - NFS	Unix	DISA STIG Solaris 10 SPARC v2r2
GEN002870 - The system must be configured to send audit records to a remote audit server - NFS	Unix	DISA STIG Solaris 10 SPARC v2r4
GEN002870 - The system must be configured to send audit records to a remote audit server - SYSLOG	Unix	DISA STIG Solaris 10 X86 v2r1

Detections

Analytics

CCI|CCI-001348

Title

Reference Item Details

Audit Items