STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 2 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← AU-8 — Time Stamps

CCI-001890

Definition

Record time stamps for audit records that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or that include the local time offset as part of the time stamp.

Parent Control

AU-8Time StampsAudit and Accountability

Linked STIG Checks (107)

V-255613CAT IIThe A10 Networks ADC must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).A10 Networks ADC NDM Security Technical Implementation Guide V-204691CAT IIAAA Services must be configured to use or map to Coordinated Universal Time (UTC) to record time stamps for audit records.AAA Services Security Requirements Guide V-279077CAT IIColdFusion must record time stamps for log records that can be mapped system time.Adobe ColdFusion Security Technical Implementation Guide V-274175CAT IIAmazon Linux 2023 must synchronize internal information system clocks to the authoritative time source at least every 24 hours.Amazon Linux 2023 Security Technical Implementation Guide V-268149CAT IINixOS must, for networked systems, compare internal information system clocks at least every 24 hours with a server which is synchronized to one of the redundant United States Naval Observatory (USNO) time servers, or a time server designated for the appropriate DOD network (NIPRNet/SIPRNet), and/or the Global Positioning System (GPS).Anduril NixOS Security Technical Implementation Guide V-214265CAT IIThe Apache web server must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT) which are stamped at a minimum granularity of one second.Apache Server 2.4 UNIX Server Security Technical Implementation Guide V-214351CAT IIThe Apache web server must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT) with a minimum granularity of one second.Apache Server 2.4 Windows Server Security Technical Implementation Guide V-252464CAT IIThe macOS system must initiate session audits at system startup, using internal clocks with time stamps for audit records that meet a minimum granularity of one second and can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT), in order to generate audit records containing information to establish what type of events occurred, the identity of any individual or process associated with the event, including individual identities of group account users, establish where the events occurred, source of the event, and outcome of the events including all account enabling actions, full-text recording of privileged commands, and information about the use of encryption for access wireless access to and from the system.Apple macOS 12 (Monterey) Security Technical Implementation Guide V-257170CAT IIThe macOS system must produce audit records containing information to establish when, where, what type, the source, and the outcome for all DOD-defined auditable events and actions.Apple macOS 13 (Ventura) Security Technical Implementation Guide V-268454CAT IIThe macOS system must enable security auditing.Apple macOS 15 (Sequoia) Security Technical Implementation Guide V-277062CAT IIThe macOS system must enable security auditing.Apple macOS 26 (Tahoe) Security Technical Implementation Guide V-222498CAT IIThe application must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Application Security and Development Security Technical Implementation Guide V-204794CAT IIThe application server must record time stamps for log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Application Server Security Requirements Guide V-217368CAT IIThe Arista Multilayer Switch must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Arista MLS DCS-7000 Series NDM Security Technical Implementation Guide V-255958CAT IIThe Arista network device must be configured to synchronize internal system clocks using redundant authenticated time sources.Arista MLS EOS 4.X NDM Security Technical Implementation Guide V-276016CAT IIAx-OS must compare the internal system clocks on an organization-defined frequency with an organization-defined authoritative time source.Axonius Federal Systems Ax-OS Security Technical Implementation Guide V-255513CAT IIIThe CA API Gateway must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).CA API Gateway NDM Security Technical Implementation Guide V-219333CAT IIIThe Ubuntu operating system must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Canonical Ubuntu 18.04 LTS Security Technical Implementation Guide V-238308CAT IIIThe Ubuntu operating system must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide V-260521CAT IIIUbuntu 22.04 LTS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide V-270820CAT IIIUbuntu 24.04 LTS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide V-206504CAT IIIUpon receipt of the log record from hosts and devices, the Central Log Server must be configured to record time stamps of the time of receipt that can be mapped to Coordinated Universal Time (UTC).Central Log Server Security Requirements Guide V-271916CAT IIThe Cisco ACI must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).Cisco ACI NDM Security Technical Implementation Guide V-239924CAT IIThe Cisco ASA must be configured to synchronize its clock with the primary and secondary time sources using redundant authoritative time sources.Cisco ASA NDM Security Technical Implementation Guide V-215693CAT IIThe Cisco router must be configured to synchronize its clock with the primary and secondary time sources using redundant authoritative time sources.Cisco IOS Router NDM Security Technical Implementation Guide V-220601CAT IIThe Cisco switch must be configured to synchronize its clock with the primary and secondary time sources using redundant authoritative time sources.Cisco IOS Switch NDM Security Technical Implementation Guide V-215838CAT IIThe Cisco router must be configured to synchronize its clock with the primary and secondary time sources using redundant authoritative time sources.Cisco IOS XE Router NDM Security Technical Implementation Guide V-220549CAT IIThe Cisco switch must be configured to synchronize its clock with the primary and secondary time sources using redundant authoritative time sources.Cisco IOS XE Switch NDM Security Technical Implementation Guide V-216537CAT IIThe Cisco router must be configured to record time stamps for log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Cisco IOS XR Router NDM Security Technical Implementation Guide V-242630CAT IIThe Cisco ISE must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).Cisco ISE NDM Security Technical Implementation Guide V-220499CAT IIThe Cisco switch must be configured to record time stamps for log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Cisco NX OS Switch NDM Security Technical Implementation Guide V-269533CAT IIThe chronyd service must be enabled.Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide V-269534CAT IIAlmaLinux OS 9 must have the chrony package installed.Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide V-269535CAT IIAlmaLinux OS 9 must securely compare internal information system clocks at least every 24 hours.Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide V-233181CAT IIAll audit records must use UTC or GMT time stamps.Container Platform Security Requirements Guide V-233532CAT IIPostgreSQL must record time stamps, in audit records and application data that can be mapped to Coordinated Universal Time (UTC, formerly GMT).Crunchy Data PostgreSQL Security Technical Implementation Guide V-261921CAT IIPostgreSQL must record time stamps in audit records and application data that can be mapped to Coordinated Universal Time (UTC), formerly Greenwich Mean Time (GMT).Crunchy Data Postgres 16 Security Technical Implementation Guide V-255570CAT IIThe DBN-6300 must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).DBN-6300 NDM Security Technical Implementation Guide V-206594CAT IIThe DBMS must record time stamps, in audit records and application data, that can be mapped to Coordinated Universal Time (UTC, formerly GMT).Database Security Requirements Guide V-259281CAT IIThe EDB Postgres Advanced Server must record time stamps in audit records and application data that can be mapped to Coordinated Universal Time (UTC, formerly GMT).EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide V-266077CAT IIThe F5 BIG-IP appliance must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).F5 BIG-IP TMOS NDM Security Technical Implementation Guide V-278385CAT IINGINX must provide audit records for DOD-defined auditable events.F5 NGINX Security Technical Implementation Guide V-255628CAT IICounterACT must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).ForeScout CounterACT NDM Security Technical Implementation Guide V-230945CAT IIForescout must be configured to use Coordinated Universal Time (UTC).Forescout Network Device Management Security Technical Implementation Guide V-234184CAT IIThe FortiGate device must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Fortinet FortiGate Firewall NDM Security Technical Implementation Guide V-203714CAT IIIThe operating system must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).General Purpose Operating System Security Requirements Guide V-217466CAT IIThe HP FlexFabric Switch must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).HP FlexFabric Switch NDM Security Technical Implementation Guide V-237831CAT IIIThe storage system must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide V-255283CAT IIThe HPE 3PAR OS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).HPE 3PAR StoreServ 3.3.x Security Technical Implementation Guide V-283404CAT IIThe HPE Alletra Storage ArcusOS device must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).HPE Alletra Storage ArcusOS Network Device Management Security Technical Implementation Guide V-266954CAT IIAOS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).HPE Aruba Networking AOS NDM Security Technical Implementation Guide V-215255CAT IIAIX must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).IBM AIX 7.x Security Technical Implementation Guide V-65155CAT IIThe DataPower Gateway must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).IBM DataPower Network Device Management Security Technical Implementation Guide V-258604CAT IIThe ICS must be configured to record time stamps for audit records that can be mapped to Greenwich Mean Time (GMT).Ivanti Connect Secure NDM Security Technical Implementation Guide V-253921CAT IIThe Juniper EX switch must be configured to record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Juniper EX Series Switches Network Device Management Security Technical Implementation Guide V-217335CAT IIThe Juniper router must be configured to record time stamps for log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Juniper Router NDM Security Technical Implementation Guide V-66483CAT IIThe Juniper SRX Services Gateway must record time stamps for log records using Coordinated Universal Time (UTC).Juniper SRX SG NDM Security Technical Implementation Guide V-223201CAT IIThe Juniper SRX Services Gateway must record time stamps for log records using Coordinated Universal Time (UTC).Juniper SRX Services Gateway NDM Security Technical Implementation Guide V-213871CAT IISQL Server must produce time stamps that can be mapped to Coordinated Universal Time (UTC, formerly GMT).MS SQL Server 2014 Instance Security Technical Implementation Guide V-213986CAT IISQL Server must record time stamps in audit records and application data that can be mapped to Coordinated Universal Time (UTC, formerly GMT).MS SQL Server 2016 Instance Security Technical Implementation Guide V-253730CAT IIMariaDB must record time stamps, in audit records and application data, that can be mapped to Coordinated Universal Time (UTC, formerly GMT).MariaDB Enterprise 10.x Security Technical Implementation Guide V-271346CAT IISQL Server must record time stamps in audit records and application data that can be mapped to Coordinated Universal Time (UTC), formerly Greenwich Mean Time (GMT).Microsoft SQL Server 2022 Instance Security Technical Implementation Guide V-246938CAT IIONTAP must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).NetApp ONTAP DSC 9.x Security Technical Implementation Guide V-202102CAT IIThe network device must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Network Device Management Security Requirements Guide V-279573CAT IIINutanix OS must configure redundant United States Naval Observatory (USNO) time servers, or a time server designated for the appropriate DOD network (NIPRNet/SIPRNet), and/or the Global Positioning System (GPS).Nutanix Acropolis GPOS Security Technical Implementation Guide V-248820CAT IIOL 8 must compare internal information system clocks at least every 24 hours with a server synchronized to an authoritative time source, such as the United States Naval Observatory (USNO) time servers, or a time server designated for the appropriate DOD network (NIPRNet/SIPRNet), and/or the Global Positioning System (GPS).Oracle Linux 8 Security Technical Implementation Guide V-271699CAT IIOL 9 must securely compare internal information system clocks at least every 24 hours.Oracle Linux 9 Security Technical Implementation Guide V-228666CAT IIThe Palo Alto Networks security platform must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Palo Alto Networks NDM Security Technical Implementation Guide V-214069CAT IIPostgreSQL must record time stamps, in audit records and application data, that can be mapped to Coordinated Universal Time (UTC, formerly GMT).PostgreSQL 9.x Security Technical Implementation Guide V-273821CAT IIThe RUCKUS ICX device must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).RUCKUS ICX NDM Security Technical Implementation Guide V-252844CAT IIRancher MCM must generate audit records for all DoD-defined auditable events within all components in the platform.Rancher Government Solutions Multi-Cluster Manager Security Technical Implementation Guide V-254555CAT IIRancher RKE2 components must be configured in accordance with the security configuration settings based on DOD security configuration or implementation guidance, including SRGs, STIGs, NSA configuration guides, CTOs, and DTMs.Rancher Government Solutions RKE2 Security Technical Implementation Guide V-281336CAT IIRHEL 10 must securely compare internal information system clocks at least every 24 hours.Red Hat Enterprise Linux 10 Security Technical Implementation Guide V-257945CAT IIRHEL 9 must securely compare internal information system clocks at least every 24 hours.Red Hat Enterprise Linux 9 Security Technical Implementation Guide V-251201CAT IIRedis Enterprise DBMS must record time stamps, in audit records and application data, that can be mapped to Coordinated Universal Time (UTC, formerly GMT).Redis Enterprise 6.x Security Technical Implementation Guide V-275615CAT IIIUbuntu OS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).Riverbed NetIM OS Security Technical Implementation Guide V-256086CAT IIThe Riverbed NetProfiler must be configured to record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).Riverbed NetProfiler Security Technical Implementation Guide V-261410CAT IISLEM 5 must have the auditing package installed.SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide V-261462CAT IISLEM 5 must generate audit records for all uses of privileged functions.SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide V-217282CAT IIIThe SUSE operating system must be configured to use Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).SUSE Linux Enterprise Server 12 Security Technical Implementation Guide V-242247CAT IIThe TippingPoint SMS must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Trend Micro TippingPoint NDM Security Technical Implementation Guide V-252928CAT IITOSS must, for networked systems, compare internal information system clocks at least every 24 hours with a server which is synchronized to one of the redundant United States Naval Observatory (USNO) time servers, or a time server designated for the appropriate DOD network (NIPRNet/SIPRNet), and/or the Global Positioning System (GPS).Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide V-282549CAT IITOSS 5 must securely compare internal information system clocks at least every 24 hours.Tri-Lab Operating System Stack (TOSS) 5 Security Technical Implementation Guide V-234516CAT IIThe UEM server must be configured to record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Unified Endpoint Management Server Security Requirements Guide V-240079CAT IIHAProxy must use the httplog option.VMW vRealize Automation 7.x HA Proxy Security Technical Implementation Guide V-240307CAT IIThe vRA PostgreSQL database must use UTC for log timestamps.VMW vRealize Automation 7.x PostgreSQL Security Technical Implementation Guide V-239807CAT IIThe vROps PostgreSQL DB must record time stamps, in audit records and application data that can be mapped to Coordinated Universal Time (UTC, formerly GMT).VMW vRealize Operations Manager 6.x PostgreSQL Security Technical Implementation Guide V-265339CAT IIThe NSX Manager must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).VMware NSX 4.x Manager NDM Security Technical Implementation Guide V-251783CAT IIThe NSX-T Manager must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC).VMware NSX-T Manager NDM Security Technical Implementation Guide V-240263CAT IILighttpd audit records must be mapped to a time stamp.VMware vRealize Automation 7.x Lighttpd Security Technical Implementation Guide V-240848CAT IItc Server HORIZON must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).VMware vRealize Automation 7.x tc Server Security Technical Implementation Guide V-240849CAT IItc Server VCO must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).VMware vRealize Automation 7.x tc Server Security Technical Implementation Guide V-240850CAT IItc Server VCAC must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).VMware vRealize Automation 7.x tc Server Security Technical Implementation Guide V-241704CAT IItc Server UI must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).VMware vRealize Operations Manager 6.x tc Server Security Technical Implementation Guide V-241705CAT IItc Server CaSa must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).VMware vRealize Operations Manager 6.x tc Server Security Technical Implementation Guide V-241706CAT IItc Server API must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).VMware vRealize Operations Manager 6.x tc Server Security Technical Implementation Guide V-256650CAT IIVAMI must produce log records containing sufficient information to establish what type of events occurred.VMware vSphere 7.0 VAMI Security Technical Implementation Guide V-256677CAT IIESX Agent Manager must record user access in a format that enables monitoring of remote access.VMware vSphere 7.0 vCenter Appliance EAM Security Technical Implementation Guide V-256710CAT IILookup Service must record user access in a format that enables monitoring of remote access.VMware vSphere 7.0 vCenter Appliance Lookup Service Security Technical Implementation Guide V-256615CAT IIPerformance Charts must record user access in a format that enables monitoring of remote access.VMware vSphere 7.0 vCenter Appliance Perfcharts Security Technical Implementation Guide V-256610CAT IIVMware Postgres must use Coordinated Universal Time (UTC) for log timestamps.VMware vSphere 7.0 vCenter Appliance PostgreSQL Security Technical Implementation Guide V-256749CAT IIThe Security Token Service must record user access in a format that enables monitoring of remote access.VMware vSphere 7.0 vCenter Appliance STS Security Technical Implementation Guide V-256782CAT IIvSphere UI must record user access in a format that enables monitoring of remote access.VMware vSphere 7.0 vCenter Appliance UI Security Technical Implementation Guide V-259140CAT IIThe vCenter VAMI service must produce log records containing sufficient information to establish what type of events occurred.VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) Security Technical Implementation Guide V-259182CAT IIThe vCenter PostgreSQL service must use Coordinated Universal Time (UTC) for log timestamps.VMware vSphere 8.0 vCenter Appliance PostgreSQL Security Technical Implementation Guide V-207466CAT IIThe VMM must record time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Virtual Machine Manager Security Requirements Guide V-206425CAT IIThe web server must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).Web Server Security Requirements Guide