Check: 1.032
Windows 2003 MS STIG:
1.032
(in version v6 r37)
Title
Audit logs are archived to prevent loss. (Cat II impact)
Discussion
This check verifies that Audit logs are archived to ensure data is not being lost. Audit logs are retained for at least one year, systems containing source and methods intelligence (SAMI) will be retained for five years in accordance with DoD policy.
Check Content
Interview the SA to determine the process for archiving audit logs. Audit logs are retained for at least one year; on systems containing sources and methods intelligence (SAMI) logs will be retained for five years.
Fix Text
Define a process for archiving audit logs as required.
Additional Identifiers
Rule ID: SV-29751r2_rule
Vulnerability ID: V-14226
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000366 |
Implement the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-6 |
Configuration Settings |