The Cisco ISE must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-242630 | CSCO-NM-000240 | SV-242630r961443_rule | CCI-001890 | medium |
| Description | ||||
| If time stamps are not consistently applied and there is no common time reference, it is difficult to perform forensic analysis. Time stamps generated by the application include date and time. Time is commonly expressed in Coordinated Universal Time (UTC), a modern continuation of Greenwich Mean Time (GMT). | ||||
| STIG | Date | |||
| Cisco ISE NDM Security Technical Implementation Guide | 2024-09-10 | |||
Details
Check Text (C-242630r961443_chk)
1. View the clock setting.
show clock
2. Verify the clock is set to use UTC.
If the Cisco ISE does not use UTC, this is a finding.
Fix Text (F-45862r714199_fix)
Change the clock to UTC using the CLI.
clock timezone UTC