Detections
Analytics

CSCv7|6.3

Title

Enable Detailed Logging

Description

Enable system logging to include detailed information such as a event source, date, user, timestamp, source addresses, destination addresses, and other useful elements.

Reference Item Details

Category: Maintenance, Monitoring and Analysis of Audit Logs

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.3 Ensure auditing is configured for the Docker daemonUnixCIS Docker v1.8.0 L1 OS Linux
1.1.6 Set 'aaa accounting' to log all privileged use commands using 'commands 15'CiscoCIS Cisco IOS XE 16.x v2.1.0 L2
1.1.6 Set 'aaa accounting' to log all privileged use commands using 'commands 15'CiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.1.8 Set 'aaa accounting exec'CiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.1.8 Set 'aaa accounting exec'CiscoCIS Cisco IOS XE 16.x v2.1.0 L2
1.1.9 Set 'aaa accounting network'CiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.1.9 Set 'aaa accounting network'CiscoCIS Cisco IOS XE 16.x v2.1.0 L2
1.1.10 Set 'aaa accounting system'CiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.1.10 Set 'aaa accounting system'CiscoCIS Cisco IOS XE 16.x v2.1.0 L2
1.1.15 Ensure that the --audit-log-path argument is set as appropriateUnixCIS Kubernetes 1.13 Benchmark v1.4.1 L1
1.2.18 Ensure that the --audit-log-path argument is setOpenShiftCIS Red Hat OpenShift Container Platform v1.8.0 L1 OpenShift
1.3.3 Ensure sudo log file existsUnixCIS SUSE Linux Enterprise 12 v3.2.1 L1 Server
1.3.3 Ensure sudo log file existsUnixCIS Fedora 19 Family Linux Workstation L1 v1.0.0
1.3.3 Ensure sudo log file existsUnixCIS SUSE Linux Enterprise 12 v3.2.1 L1 Workstation
1.3.3 Ensure sudo log file existsUnixCIS Debian Family Server L1 v1.0.0
1.3.3 Ensure sudo log file existsUnixCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0
1.3.3 Ensure sudo log file existsUnixCIS Debian Family Workstation L1 v1.0.0
1.3.3 Ensure sudo log file existsUnixCIS Fedora 19 Family Linux Server L1 v1.0.0
1.3.3 Ensure sudo log file existsUnixCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0
1.3.3 Ensure sudo log file existsUnixCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0
1.4.1 Enable loggingCiscoCIS Cisco IOS XR 7.x v1.0.1 L1
1.4.2 Set 'buffer size'CiscoCIS Cisco IOS XR 7.x v1.0.1 L1
1.4.3 Set 'logging console critical'CiscoCIS Cisco IOS XR 7.x v1.0.1 L1
1.4.5 Set 'logging trap informational'CiscoCIS Cisco IOS XR 7.x v1.0.1 L1
1.4.6 Set logging timestampsCiscoCIS Cisco IOS XR 7.x v1.0.1 L1
1.4.7 Set 'logging source interface'CiscoCIS Cisco IOS XR 7.x v1.0.1 L1
1.5.1 Ensure Syslog Logging is configuredCiscoCIS Cisco NX-OS v1.2.0 L2
1.5.3 Configure Netflow on Strategic PortsCiscoCIS Cisco NX-OS v1.2.0 L2
1.5.4 Configure Logging TimestampsCiscoCIS Cisco NX-OS v1.2.0 L1
1.9.2 Configure SNMP TrapsCiscoCIS Cisco NX-OS v1.2.0 L1
1.10 UBTU-24-100200UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.10.5 Ensure 'logging history severity level' is set to greater than or equal to '5'CiscoCIS Cisco ASA 9.x Firewall L1 v1.1.0
1.10.6 Ensure 'logging history severity level' is set to greater than or equal to '5'CiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.10.6 Ensure 'logging with timestamps' is enabledCiscoCIS Cisco ASA 9.x Firewall L1 v1.1.0
1.10.7 Ensure 'logging with timestamps' is enabledCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.10.8 Ensure 'logging buffered severity level' is greater than or equal to '3'CiscoCIS Cisco ASA 9.x Firewall L1 v1.1.0
1.10.9 Ensure 'logging buffer size' is greater than or equal to '524288' bytes (512kb)CiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.10.9 Ensure 'logging trap severity level' is greater than or equal to '5'CiscoCIS Cisco ASA 9.x Firewall L1 v1.1.0
1.10.10 Ensure 'logging buffered severity level' is greater than or equal to '3'CiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.14 UBTU-24-100410UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.15 UBTU-24-100450UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT III
1.117 UBTU-22-652010UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.120 UBTU-22-653015UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.121 UBTU-22-653020UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT III
1.188 UBTU-24-909000UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
10.18 Use the logEffectiveWebXml and metadata-complete settings for deploying applications in productionUnixCIS Apache Tomcat 10.1 v1.1.0 L1
10.18 Use the logEffectiveWebXml and metadata-complete settings for deploying applications in productionUnixCIS Apache Tomcat 11 v1.0.0 L1
10.18 Use the logEffectiveWebXml and metadata-complete settings for deploying applications in productionUnixCIS Apache Tomcat 10 L1 v1.1.0
10.18 Use the logEffectiveWebXml and metadata-complete settings for deploying applications in productionUnixCIS Apache Tomcat 9 L1 v1.2.0
10.18 Use the logEffectiveWebXml and metadata-complete settings for deploying applications in production - context.xmlUnixCIS Apache Tomcat 9 L1 v1.2.0 Middleware