Skip to content
Catalogs
XCCDF
Solaris 11 SPARC Security Technical Implementation Guide
SRG-OS-000062
The audit records must provide data for all auditable events defined at the organizational level for the organization-defined information system components.
The audit records must provide data for all auditable events defined at the organizational level for the organization-defined information system components. An XCCDF Rule
The audit records must provide data for all auditable events defined at the organizational level for the organization-defined information system components.
Medium Severity
<VulnDiscussion>Without auditing, individual system accesses cannot be tracked, and malicious activity cannot be detected and traced back to an individual account.
Without accurate time stamps, source, user, and activity information, malicious activity cannot be accurately tracked.
Without an audit reduction and reporting capability, users find it difficult to identify specific patterns of attack.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>