Ensuring SNMP alerts are generated if logging fails
Rule Title: RiOS must alert the ISSO and the system administrator (SA), at a minimum, in the event of an audit processing failure.
STIG ID: RICX-DM-000054
Rule ID: SV-77407r1_rule Severity: CAT II
Vuln ID: V-62917 Class: Unclass
The appropriate personnel must be aware if a system is at risk of failing to process audit logs as required. Without this notification, the security personnel might be unaware of an impending failure of the audit capability and system operation might be adversely affected.
Audit processing failures include software/hardware errors, failures in the audit capturing mechanisms, and audit storage capacity being reached or exceeded.
Verifying servers are configured as trap receivers
Verify that RiOS uses automated mechanisms to alert security personnel to threats identified by authoritative sources.
Configuring host servers are configured as trap receivers
Configure RiOS to use automated mechanisms to alert security personnel to threats identified by authoritative sources.