The operating system must provide a report generation capability that supports on-demand audit review and analysis.

STIG ID: SRG-OS-000350-GPOS-00138  |  SRG: SRG-OS-000350 |  Severity: low |  CCI: CCI-001878 |  Vulnerability Id: V-203706 | 

Vulnerability Discussion

The report generation capability must support on-demand review and analysis in order to facilitate the organization's ability to generate incident reports, as needed, to better handle larger-scale or more complex security incidents.

Report generation must be capable of generating on-demand (i.e., customizable, ad hoc, and as-needed) reports. On-demand reporting allows personnel to report issues more rapidly to more effectively meet reporting requirements. Collecting log data and aggregating it to present the data in a single, consolidated report achieves this objective.

Check

Verify the operating system provides a report generation capability that supports on-demand audit review and analysis. If it does not, this is a finding.

Fix

Configure the operating system to provide a report generation capability that supports on-demand audit review and analysis.