ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Active Directory Checklist, V1R1.2 Field Security Operations<br />
22 September 2006 Defense Information Systems Agency<br />
DS05.0270 Synch\Maint Audit Data Backup<br />
STIG ID \ V-Key DS05.0270 \ V0011765<br />
Severity Cat III<br />
Short Name Synch\Maint Audit Data Backup<br />
IA Controls ECTB-1<br />
MAC /Conf 1-CSP, 2-CSP, 3-C<br />
References AD STIG 2.3.3.5<br />
Long Name: Audit data from a synch\maint implementation is not backed up at least weekly on<br />
external media or on a system other than where the implementation executes.<br />
Checks:<br />
Note: This check is Not Applicable if the audit data is collected in a Windows Event<br />
Log. [Windows Event Log backup is reviewed in the Windows Checklist.]<br />
• Interview the Application SA.<br />
• Obtain a copy of the site’s policy that addresses (audit) data backup.<br />
• Check that the policy addresses the requirement for the audit data from a<br />
synch\maint implementation to be:<br />
- Backed up at least weekly<br />
- Backed up on external media or to a system other than the one on which the<br />
implementation runs.<br />
Alternatively review logs or other evidence that indicates audit data backup<br />
frequency and output destination.<br />
• If the audit data is not backed up at least weekly or is not backed up to a detached<br />
location, then this is a Finding.<br />
UNCLASSIFIED<br />
3-17