Check: CISR-ND-000104
Cisco IOS XE Release 3 NDM STIG:
CISR-ND-000104
(in versions v1 r5 through v1 r2)
Title
The Cisco IOS XE router must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision. (Cat II impact)
Discussion
Without sufficient granularity of time stamps, it is not possible to adequately determine the chronological order of records. Time stamps generated by the application include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks.
Check Content
Verify that the time stamps for audit records have a granularity of one second. The configuration should look similar to the example below: service timestamps debug datetime msec service timestamps log datetime year If the time stamps have a granularity larger than one second, this is a finding.
Fix Text
Configure the Cisco IOS XE router to have a granularity of one second for audit log time stamps. The configuration should look like the example below: service timestamps debug datetime msec service timestamps log datetime year
Additional Identifiers
Rule ID: SV-88723r2_rule
Vulnerability ID: V-74049
Group Title: SRG-APP-000375-NDM-000300
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001889 |
The information system records time stamps for audit records that meet organization-defined granularity of time measurement. |
Controls
Number | Title |
---|---|
AU-8 |
Time Stamps |