The EDB Postgres Advanced Server must generate audit records when successful logons or connections occur.

An XCCDF Rule

Description

<VulnDiscussion>For completeness of forensic analysis, it is necessary to track who/what (a user or other principal) logs on to the DBMS.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-259316r961824_rule
Severity: Medium
References: CCI-000172
Updated: 17 days ago

Execute the following SQL as the "enterprisedb" operating system user:

> psql edb -c "ALTER SYSTEM SET edb_audit_connect = 'all'"
> psql edb -c "ALTER SYSTEM SET edb_audit_disconnect = 'all'"
>psql edb -c "SELECT pg_reload_conf()"
or

Update the system documentation to note the organizationally approved setting and corresponding justification of the setting for this requirement.

The EDB Postgres Advanced Server must generate audit records when successful logons or connections occur.

Description

Remediation - Manual Procedure