Details
Logs should include message levels of ‘notice’ and above. By default two event classes are overridden with a priority of ‘notice’. If additional overrides are found logs may not contain all expected events.
Solution
If other overrides are present remove them by editing the configuration and entering ‘no’ before the override to be removed.
This security hardening control applies to the following category of controls within NIST 800-53: Audit and Accountability.This control applies to the following type of system FireEye.