Capacity
CCI-001882
Provide a report generation capability that does not alter original content or time ordering of audit records.
Choose one
29
Rule
Severity: Medium
Ensure the audit Subsystem is Installed
30
Rule
Severity: Medium
Enable auditd Service
3
Rule
Severity: Medium
Ensure the audit-libs package as a part of audit Subsystem is Installed
15
Rule
Severity: Medium
Record Events When Privileged Executables Are Run
2
Rule
Severity: Medium
Ensure the libaudit1 package as a part of audit Subsystem is Installed
2
Rule
Severity: Medium
The application must provide a report generation capability that does not alter original content or time ordering of audit records.
2
Rule
Severity: Low
The Central Log Server must be configured to generate reports that do not alter original content or time ordering of log records.
2
Rule
Severity: Medium
The Mainframe Product must provide a report generation capability that does not alter original content or time ordering of audit records.
1
Rule
Severity: Medium
Nutanix AOS must provide the capability to centrally review and analyze audit records from multiple components within the system.
1
Rule
Severity: Medium
The macOS system must enable System Integrity Protection.
3
Rule
Severity: High
The macOS system must enable System Integrity Protection.
2
Rule
Severity: Medium
The Ubuntu operating system must produce audit records and reports containing information to establish when, where, what type, the source, and the outcome for all DoD-defined auditable events and actions in near real time.
2
Rule
Severity: Medium
The operating system must not alter original content or time ordering of audit records when it provides a report generation capability.
2
Rule
Severity: Medium
OL 8 audit records must contain information to establish what type of events occurred, the source of events, where events occurred, and the outcome of events.
4
Rule
Severity: Medium
The SUSE operating system must have the auditing package installed.
4
Rule
Severity: Low
The SUSE operating system must generate audit records for all uses of the privileged functions.
2
Rule
Severity: Medium
RHEL 9 audit package must be installed.
2
Rule
Severity: Medium
RHEL 9 audit service must be enabled.
2
Rule
Severity: Medium
The VMM that provides a report generation capability must not alter original content or time ordering of audit records.
1
Rule
Severity: Medium
Ubuntu 22.04 LTS must have the "auditd" package installed.
1
Rule
Severity: Medium
Ubuntu 22.04 LTS must produce audit records and reports containing information to establish when, where, what type, the source, and the outcome for all DOD-defined auditable events and actions in near real time.
1
Rule
Severity: Medium
The OL 8 audit package must be installed.
1
Rule
Severity: Medium
SLEM 5 must have the auditing package installed.
1
Rule
Severity: Medium
SLEM 5 must generate audit records for all uses of privileged functions.
1
Rule
Severity: Medium
TOSS audit records must contain information to establish what type of events occurred, when the events occurred, the source of events, where events occurred, and the outcome of events.
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules
66%