800-53|AU-9

Title

PROTECTION OF AUDIT INFORMATION

Description

The information system protects audit information and audit tools from unauthorized access, modification, and deletion.

Supplemental

Audit information includes all information (e.g., audit records, audit settings, and audit reports) needed to successfully audit information system activity. This control focuses on technical protection of audit information. Physical protection of audit information is addressed by media protection controls and physical and environmental protection controls.

Reference Item Details

Related: AC-3,AC-6,MP-2,MP-4,PE-2,PE-3,PE-6

Category: AUDIT AND ACCOUNTABILITY

Family: AUDIT AND ACCOUNTABILITY

Priority: P1

Baseline Impact: LOW,MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 UBTU-24-90890UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.1.1 Ensure Super Admin Email Address Is Not Tied To A Single UserGCPCIS Google Cloud Platform Foundation v5.0.0 L1
1.1.11 Ensure separate partition exists for /var/log/auditUnixCIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0
1.1.11 Ensure separate partition exists for /var/log/auditUnixCIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0
1.10 EX19-ED-000045WindowsCIS Microsoft Exchange 2019 Edge Server STIG v1.0.0 CAT II
1.10.4 Ensure 'syslog hosts' is configured correctlyCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.11 EX19-ED-000046WindowsCIS Microsoft Exchange 2019 Edge Server STIG v1.0.0 CAT II
1.11 PHTN-40-000026UnixCIS VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v1.0.0 CAT II
1.12 CISC-ND-000380CiscoCIS Cisco IOS Switch NDM STIG v1.1.0 CAT II
1.12 EX19-ED-000050WindowsCIS Microsoft Exchange 2019 Edge Server STIG v1.0.0 CAT II
1.13 APPL-14-000030UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.13 APPL-26-000030UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.13 CISC-ND-000380CiscoCIS Cisco IOS XE Switch NDM STIG v1.1.0 CAT II
1.14 APPL-14-000031UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.14 APPL-26-000031UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.14 CISC-ND-000390CiscoCIS Cisco IOS XE Switch NDM STIG v1.1.0 CAT II
1.14 CISC-ND-000390CiscoCIS Cisco IOS Switch NDM STIG v1.1.0 CAT II
1.14 MADB-10-002000MySQLDBCIS MariaDB Enterprise 10.x STIG v1.1.0 CAT II MySQLDB
1.14 SQLI-22-005900MS_SQLDBCIS Microsoft SQL Server 2022 Instance STIG v1.0.0 CAT II MS_SQLDB
1.15 MADB-10-002100MySQLDBCIS MariaDB Enterprise 10.x STIG v1.1.0 CAT II MySQLDB
1.15 SQLI-22-006300MS_SQLDBCIS Microsoft SQL Server 2022 Instance STIG v1.0.0 CAT II MS_SQLDB
1.108 AZLX-23-002190UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.109 AZLX-23-002195UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.110 AZLX-23-002200UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.113 RHEL-09-232035UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.115 AZLX-23-002225UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.115 UBTU-22-651030UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.116 AZLX-23-002230UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.117 AZLX-23-002235UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.120 RHEL-10-400165UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.121 RHEL-10-400170UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.122 RHEL-10-400175UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.123 RHEL-10-400180UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.124 RHEL-10-400185UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.125 RHEL-10-400190UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.126 UBTU-22-653045UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.127 RHEL-09-232103UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.127 UBTU-22-653050UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.128 RHEL-09-232104UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.128 UBTU-22-653055UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.129 UBTU-22-653060UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.134 OL09-00-000710UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.138 APPL-26-005001UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT I
1.139 APPL-14-005001UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT I
1.147 RHEL-10-400300UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.148 OL09-00-000785UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.148 RHEL-10-400305UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.148 SLES-15-030600UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.149 OL09-00-000790UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.149 SLES-15-030620UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II