Title

Audit records do not record the identity of each person and terminal device having access to switch software or databases. (Cat II impact)

Discussion

Requirement: The IAO will ensure that the auditing process records the identity of each person and terminal device having access to switch software or databases The identity of the individual user and the terminal used during their session will be recorded in the audit records. This is needed for accountability of command issues and actions taken during each session.

Check Content

Have the IAO or SA demonstrate compliance with the requirement; minimally on a sampling of the related or effected devices. Inspect configuration files as applicable.

Fix Text

Ensure audit records contain the user and terminal identity.

Additional Identifiers

Rule ID: SV-8460r1_rule

Vulnerability ID: V-7974

Group Title: Audit records do not record individual identity

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.