Title

The system clock must be synchronized continuously. (Cat II impact)

Discussion

A synchronized system clock is critical for the enforcement of time-based policies and the correlation of logs and audit records with other systems. Internal system clocks tend to drift and require periodic resynchronization to ensure their accuracy. Software, such as NTPD, can be used to continuously synchronize the system clock with authoritative sources. Alternatively, the system may be synchronized periodically, with a maximum of one day between synchronizations. If the system is completely isolated (no connections to networks or other systems), time synchronization is not required as no correlation of events or operation of time-dependent protocols between systems will be necessary. If the system is completely isolated, this requirement is not applicable.

Check Content

Determine if time synchronization is occuring. # chkconfig If the command output does not include "timeslave" set to on, NTP is disabled and this is a finding.

Fix Text

Enable the time sycnchronization function for this system.

Additional Identifiers

Rule ID:

Vulnerability ID: V-22290

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.