1.3.16 Audit Policy: Account Management: Security Group Management

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This control defines whether the audit is activated when a security group management event, such as a create, change or delete event occurs.

Solution

Make sure 'Audit Policy: Account Management: Security Group Management' is configured to Success and Failure.

See Also

https://workbench.cisecurity.org/files/10

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12, CCE|CCE-2443-0, CCE|CCE-2560-1

Plugin: Windows

Control ID: d1939d22fd5ddb6284592b7d75d406e51a43c92d243391bc880a11eddacfcdf3