An error occurred:

Check: SRG-NET-000079-VPN-000300

Virtual Private Network (VPN) SRG: SRG-NET-000079-VPN-000300 (in versions v3 r3 through v1 r0.1)

Title

The VPN Gateway must generate log records containing information that establishes the identity of any individual or process associated with the event. (Cat II impact)

Discussion

Without information that establishes the identity of the subjects (i.e., users or processes acting on behalf of users) associated with the events, security personnel cannot determine responsibility for the potentially harmful event.

Check Content

Verify the VPN Gateway generates log records containing information that establishes the identity of any individual or process associated with the event. If the VPN Gateway does not generate log records containing information that establishes the identity of any individual or process associated with the event, this is a finding.

Fix Text

Configure the VPN Gateway to generate log records containing information that establishes the identity of any individual or process associated with the event.

Additional Identifiers

Rule ID: SV-207197r608988_rule

Vulnerability ID: V-207197

Group Title: SRG-NET-000079

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001487

Ensure that audit records containing information that establishes the identity of any individuals, subjects, or objects/entities associated with the event.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AU-3

Content of Audit Records