The Horizon Connection Server must offload events to a central log server in real time.

An XCCDF Rule

Description

Information system logging capability is critical for accurate forensic analysis. Centralized management of log records provides for efficiency in maintenance and management of records, as well as the backup and archiving of those records. The Horizon Connection Server can be configured to send all events to a syslog receiver. Multiple servers can be configured but only the UDP protocol is supported at this time. Satisfies: SRG-APP-000358-AS-000064, SRG-APP-000515-AS-000203

ID: SV-246896r768648_rule
Version: HRZV-7X-000015
Severity: Medium
References: CCI-001851
Updated: 5 days ago

Remediation Templates

Log in to the Horizon 7 Console. From the left pane, navigate to Settings >> Event Configuration. In the right pane, under "Syslog", click "Add". Enter the address of your central log server and configure the port if necessary. Click "OK". Add other servers as necessary.

The Horizon Connection Server must offload events to a central log server in real time.

Description

Remediation Templates

A Manual Procedure