The Cisco ISE must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-242630 | CSCO-NM-000240 | SV-242630r961443_rule | CCI-001890 | medium |
| Description | ||||
| If time stamps are not consistently applied and there is no common time reference, it is difficult to perform forensic analysis. Time stamps generated by the application include date and time. Time is commonly expressed in Coordinated Universal Time (UTC), a modern continuation of Greenwich Mean Time (GMT). | ||||
| STIG | Date | |||
| Cisco ISE NDM Security Technical Implementation Guide | 2024-09-10 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
AU-8
1.00
- DISA · 2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.3.7
1.00
- DISA · 2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001890
1.00
- DISA · 2 · disa_xccdf · related
Details
Check Text (C-242630r961443_chk)
1. View the clock setting.
show clock
2. Verify the clock is set to use UTC.
If the Cisco ISE does not use UTC, this is a finding.
Fix Text (F-45862r714199_fix)
Change the clock to UTC using the CLI.
clock timezone UTC