The application must generate audit records showing starting and ending time for user access to the system.

An XCCDF Rule

Description

Knowing when a user’s application session began and when it ended is critical information that aids in forensic analysis.

ID: SV-222464r961830_rule
Version: APSC-DV-000850
Severity: Medium
References: CCI-000172
Updated: about 2 months ago

Remediation Templates

Configure the application or application server to record the start and end time of user session activity.