The Central Log Server system backups must be retained for a minimum of 5 years for SAMI (Sources and Methods Information) and a minimum of 7 days for non-SAMI on media capable of guaranteeing file integrity for the minimum applicable information retention period.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-206459 | SRG-APP-000125-AU-000310 | SV-206459r960948_rule | CCI-000167 | low |
| Description | ||||
| If backups are not properly processed, protected, and stored on appropriate media, recovery from a system failure or implementation of a contingency plan would not include the data necessary to fully recover in the time required to ensure continued mission support. | ||||
| STIG | Date | |||
| Central Log Server Security Requirements Guide | 2024-12-04 | |||
Details
Check Text (C-206459r960948_chk)
Review the SSP, backup media documentation, and system backup configuration.
Verify the Central Log Server system is backed up to media capable of guaranteeing file integrity for a minimum of five years.
If the Central Log Server does not retain backups for a minimum of five years for SAMI and a minimum of seven days for non-SAMI, this is a finding.
If the Central Log Server system backups are not stored on appropriate media capable of guaranteeing file integrity for a minimum of five years for systems retaining SAMI, this is a finding.
Fix Text (F-6719r864171_fix)
Configure the Central Log Server to retain backups of system information for a minimum of five years for SAMI and a minimum of seven days for non-SAMI.
Select backup media that guarantees file integrity for a minimum of five years for systems retaining SAMI.
Document the required retention period in the SSP.