Log Auditing

Details

The system can generate logs for key events to track activities that occur and conduct security audits. Some typical events are listed below:

1) Modify the log function configuration

2) Log in to and out of the system

3) Add and delete accounts and modify system privileges

4) Enable or disable the system and key services

5) Modify system time and configuration files

6) Modify the configuration file

Solution

Configure the log type and permission of the user authorization template:

ZXR10(config-system-user)#authorization-template 1
ZXR10(config-system-user-author-temp)#logfile-allowed cmd-log read-only

Supportive Information

The following resource is also helpful.

https://support.zte.com.cn/support/doccenter/DocumentProductHandBookDetail.aspx?sid=102&id=30768582&type=docfeedback

This security hardening control applies to the following category of controls within NIST 800-53: Audit and Accountability.This control applies to the following type of system ZTE_ROSNG.

References

800-53|AU-12c.

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles