STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Juniper Router NDM Security Technical Implementation Guide

V-217333

CAT II (Medium)

The Juniper router must be configured to generate an alert for all audit failure events.

Rule ID

SV-217333r991991_rule

STIG

Juniper Router NDM Security Technical Implementation Guide

Version

V3R2

CCIs

CCI-001858, CCI-003831

Discussion

It is critical for the appropriate personnel to be aware if a system is at risk of failing to process audit logs as required. Without a real-time alert, security personnel may be unaware of an impending failure of the audit capability and system operation may be adversely affected. Alerts provide organizations with urgent messages. Real-time alerts provide these messages immediately (i.e., the time from event detection to alert occurs in seconds or less).

Check Content

Review the router configuration to verify that it is compliant with this requirement as shown in the example below.

system {
   syslog {
        host x.x.x.x {
            any critical;
        }
    }

Note: The parameter "critical" can be replaced with a lesser severity level (i.e., error, warning, notice, info).

If the router is not configured to generate an alert for all audit failure events, this is a finding.

Fix Text

Configure the router to send critical to emergency log messages to the syslog server as shown in the example below.

set syslog host x.x.x.x any critical

Note: The parameter "critical" can replaced with a lesser severity level (i.e., error, warning, notice, info).