Check: CISR-ND-000104
Cisco ISR 4000 Series NDM STIG:
CISR-ND-000104
(in version v1 r1)
Title
The Cisco ISR 4000 Series router must record time stamps for audit records that meet a granularity of one second for a minimum degree of precision. (Cat II impact)
Discussion
Without sufficient granularity of time stamps, it is not possible to adequately determine the chronological order of records. Time stamps generated by the application include date and time. Granularity of time measurements refers to the degree of synchronization between information system clocks and reference clocks.
Check Content
Verify that the time stamps for audit records have a granularity of one second. The configuration should look similar to the example below: service timestamps debug datetime msec service timestamps log datetime year If the time stamps have a granularity larger than one second, this is a finding.
Fix Text
Configure the Cisco ISR 4000 Series router to have a granularity of one second for audit log time stamps. The configuration should look like the example below: service timestamps debug datetime msec service timestamps log datetime year
Additional Identifiers
Rule ID:
Vulnerability ID: V-74049
Group Title:
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001889 |
The information system records time stamps for audit records that meet organization-defined granularity of time measurement. |
Controls
Number | Title |
---|---|
AU-8 |
Time Stamps |