An error occurred:

Check: SLES-15-030670

SUSE Linux Enterprise Server 15 STIG: SLES-15-030670 (in versions v2 r3 through v2 r2)

Title

The audit-audispd-plugins must be installed on the SUSE operating system. (Cat II impact)

Discussion

The audit-audispd-plugins must be installed on the SUSE operating system.

Check Content

Verify that the "audit-audispd-plugins" package is installed on the SUSE operating system. Check that the "audit-audispd-plugins" package is installed on the SUSE operating system with the following command: > zypper info audit-audispd-plugins | grep Installed If the "audit-audispd-plugins" package is not installed, this is a finding.

Fix Text

Install the "audit-audispd-plugins" package on the SUSE operating system by running the following command: > sudo zypper install audit-audispd-plugins

Additional Identifiers

Rule ID: SV-234966r1009564_rule

Vulnerability ID: V-234966

Group Title: SRG-OS-000342-GPOS-00133

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001851

Transfer audit logs per organization-defined frequency to a different system, system component, or media than the system or system component conducting the logging.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AU-4(1)

Transfer to Alternate Storage