The DBMS must initiate session auditing upon startup.
An XCCDF Rule
Description
<VulnDiscussion>Session auditing is for use when a user's activities are under investigation. To be sure of capturing all activity during those periods when session auditing is in use, it needs to be in operation for the whole time the DBMS is running.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-206527r879562_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Deploy a DBMS capable of session auditing.
Configure the DBMS software or third-party product to enable session auditing.