CCI-000171

The information system allows organization-defined personnel or roles to select which auditable events are to be audited by specific components of the information system.

Implementation Guidance

The organization being inspected/assessed configures the information system to ensure that only the ISSM or individuals appointed by the ISSM select which auditable events are to be audited by specific components of the information system. DoD has defined the personnel or roles as the ISSM or individuals appointed by the ISSM.

Validation Procedures

The organization conducting the inspection/assessment examines a sampling of information system components and confirms that the individuals capable of selecting auditable events are the ISSM or individuals appointed by the ISSM. DoD has defined the personnel or roles as the ISSM or individuals appointed by the ISSM.

DISA Compelling Evidence

1) audit and accountability policy 2) list of information system components that provide audit record generation capability

The controls below (if any) were marked by NIST as being related to CCI-000171.