UCF STIG Viewer Logo

Windows Server 2019 must, at a minimum, off-load audit records of interconnected systems in real time and off-load standalone systems weekly.


Overview

Finding ID Version Rule ID IA Controls Severity
V-205843 WN19-AU-000020 SV-205843r569188_rule Medium
Description
Protection of log data includes assuring the log data is not accidentally lost or deleted. Audit information stored in one location is vulnerable to accidental or incidental deletion or alteration.
STIG Date
Microsoft Windows Server 2019 Security Technical Implementation Guide 2021-08-18

Details

Check Text ( C-6108r355891_chk )
Verify the audit records, at a minimum, are off-loaded for interconnected systems in real time and off-loaded for standalone systems weekly.

If they are not, this is a finding.
Fix Text (F-6108r355892_fix)
Configure the system to, at a minimum, off-load audit records of interconnected systems in real time and off-load standalone systems weekly.