The operating system must immediately notify the SA and ISSO (at a minimum) when allocated audit record storage volume reaches 75 percent of the repository maximum audit record storage capacity.

An XCCDF Rule

Details
Profiles

Description

If security personnel are not notified immediately when storage volume reaches 75% utilization, they are unable to plan for audit record storage capacity expansion.

ID: SV-203702r971542_rule
Version: SRG-OS-000343-GPOS-00134
Severity: Low
References: CCI-001855

SRG-OS-000343-GPOS-00134
Updated: 7 days ago

Remediation Templates

Configure the operating system to immediately notify the SA and ISSO (at a minimum) when allocated audit record storage volume reaches 75% of the repository maximum audit record storage capacity.

The operating system must immediately notify the SA and ISSO (at a minimum) when allocated audit record storage volume reaches 75 percent of the repository maximum audit record storage capacity.

Description

Remediation Templates

A Manual Procedure