2.23 Ensure Security Audit Appender is enabled - 'Audit Appender = true'

Information

The Security Audit Appender must be enabled. The Security Audit Appender and the Security Audit Provider category together set up the audit infrastructure that allows deployed applications to easily audit authentication and authorization events.

Solution

Ensure the Security Audit Appender is defined within JBOSS_HOME/server/@[email protected]/conf/jboss-log4j.xml. By default, the Security Audit Appender exists and just needs to be uncommented.

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12, CAT|II

Plugin: Unix

Control ID: 8b1c48302b0447fc0f04f7c0392f3250c13544cd3a113cd37b653df3948158ea