The VMM must provide a report generation capability that supports on-demand audit review and analysis.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-207458	SRG-OS-000350-VMM-001280	SV-207458r854629_rule		Medium

Description
The report generation capability must support on-demand review and analysis in order to facilitate the organization's ability to generate incident reports as needed to better handle larger-scale or more complex security incidents. Report generation must be capable of generating on-demand (i.e., customizable, ad hoc, and as-needed) reports. On-demand reporting allows personnel to report issues more rapidly to more effectively meet reporting requirements. Collecting log data and aggregating it to present the data in a single, consolidated report achieves this objective.

Description

The report generation capability must support on-demand review and analysis in order to facilitate the organization's ability to generate incident reports as needed to better handle larger-scale or more complex security incidents. Report generation must be capable of generating on-demand (i.e., customizable, ad hoc, and as-needed) reports. On-demand reporting allows personnel to report issues more rapidly to more effectively meet reporting requirements. Collecting log data and aggregating it to present the data in a single, consolidated report achieves this objective.

STIG	Date
Virtual Machine Manager Security Requirements Guide	2023-09-12

Details

Check Text ( C-7715r365778_chk )
Verify the VMM provides a report generation capability that supports on-demand audit review and analysis. If it does not, this is a finding.

Fix Text (F-7715r365779_fix)
Ensure the VMM provides a report generation capability that supports on-demand audit review and analysis.