Documentation - V-222467

V-222467

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must generate audit records for all account creations, modifications, disabling, and termination events.

Description

<VulnDiscussion>When application user accounts are created, modified, disabled or terminated the event must be logged. Centralized management of user accounts allows for rapid response to user related security events and also provides ease of management. Allowing the centralized user management solution to log these events is acceptable practice; however, if the application provides a user management interface to manage these tasks, the application must also log these events. Application deve...

Fix Text (Documentation Requirement)

Configure the application to log user account creation, modification, disabling, and termination events.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel