STIGhub
STIGs
RMF Controls
Compare
← AU-8 — Time Stamps
CCI-000159
Definition
Use internal system clocks to generate time stamps for audit records.
Parent Control
AU-8
Time Stamps
Audit and Accountability
Linked STIG Checks (31)
V-204655
CAT II
AAA Services must be configured to use internal system clocks to generate time stamps for audit records.
AAA Services Security Requirements Guide
V-274017
CAT II
Amazon Linux 2023 must have the audit package installed.
Amazon Linux 2023 Security Technical Implementation Guide
V-268090
CAT II
The NixOS audit package must be installed.
Anduril NixOS Security Technical Implementation Guide
V-252464
CAT II
The macOS system must initiate session audits at system startup, using internal clocks with time stamps for audit records that meet a minimum granularity of one second and can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT), in order to generate audit records containing information to establish what type of events occurred, the identity of any individual or process associated with the event, including individual identities of group account users, establish where the events occurred, source of the event, and outcome of the events including all account enabling actions, full-text recording of privileged commands, and information about the use of encryption for access wireless access to and from the system.
Apple macOS 12 (Monterey) Security Technical Implementation Guide
V-257170
CAT II
The macOS system must produce audit records containing information to establish when, where, what type, the source, and the outcome for all DOD-defined auditable events and actions.
Apple macOS 13 (Ventura) Security Technical Implementation Guide
V-268454
CAT II
The macOS system must enable security auditing.
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
V-277062
CAT II
The macOS system must enable security auditing.
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V-222497
CAT II
The applications must use internal system clocks to generate time stamps for audit records.
Application Security and Development Security Technical Implementation Guide
V-204731
CAT II
The application server must use internal system clocks to generate time stamps for log records.
Application Server Security Requirements Guide
V-276014
CAT I
Ax-OS must off-load audit records onto a different system or media than the system being audited.
Axonius Federal Systems Ax-OS Security Technical Implementation Guide
V-206457
CAT III
The Central Log Server must be configured to use internal system clocks to generate time stamps for log records.
Central Log Server Security Requirements Guide
V-233055
CAT II
The container platform must use internal system clocks to generate audit record time stamps.
Container Platform Security Requirements Guide
V-255546
CAT II
The DBN-6300 must use internal system clocks to generate time stamps for audit records.
DBN-6300 NDM Security Technical Implementation Guide
V-206537
CAT II
The DBMS must use system clocks to generate time stamps for use in audit records and application data.
Database Security Requirements Guide
V-203615
CAT II
The operating system must use internal system clocks to generate time stamps for audit records.
General Purpose Operating System Security Requirements Guide
V-217447
CAT II
The HP FlexFabric Switch must use internal system clocks to generate time stamps for audit records.
HP FlexFabric Switch NDM Security Technical Implementation Guide
V-205476
CAT II
The Mainframe Products must use internal system clocks to generate time stamps for audit records.
Mainframe Product Security Requirements Guide
V-202039
CAT II
The network device must use internal system clocks to generate time stamps for audit records.
Network Device Management Security Requirements Guide
V-254106
CAT III
Nutanix AOS must be configured to synchronize internal information system clocks using redundant authoritative time sources.
Nutanix AOS 5.20.x Application Security Technical Implementation Guide
V-279426
CAT II
Nutanix AOS must use internal system clocks to generate time stamps for log records.
Nutanix Acropolis Application Server Security Technical Implementation Guide
V-271519
CAT II
OL 9 must have the audit package installed.
Oracle Linux 9 Security Technical Implementation Guide
V-235954
CAT III
Oracle WebLogic must use internal system clocks to generate time stamps for audit records.
Oracle WebLogic Server 12c Security Technical Implementation Guide
V-258151
CAT II
RHEL 9 audit package must be installed.
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V-257525
CAT II
OpenShift must use internal system clocks to generate audit record time stamps.
Red Hat OpenShift Container Platform 4.12 Security Technical Implementation Guide
V-257526
CAT II
The Red Hat Enterprise Linux CoreOS (RHCOS) chrony Daemon must use multiple NTP servers to generate audit record time stamps.
Red Hat OpenShift Container Platform 4.12 Security Technical Implementation Guide
V-257525
CAT II
OpenShift must use internal system clocks to generate audit record time stamps.
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V-257526
CAT II
The Red Hat Enterprise Linux CoreOS (RHCOS) chrony Daemon must use multiple NTP servers to generate audit record time stamps.
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V-275615
CAT III
Ubuntu OS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).
Riverbed NetIM OS Security Technical Implementation Guide
V-234340
CAT II
The UEM server must use host operating system clocks to generate time stamps for audit records.
Unified Endpoint Management Server Security Requirements Guide
V-207362
CAT II
The VMM must use internal system clocks to generate time stamps for audit records.
Virtual Machine Manager Security Requirements Guide
V-206367
CAT II
The web server must use the internal system clock to generate time stamps for log records.
Web Server Security Requirements Guide