STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Symantec ProxySG NDM Security Technical Implementation Guide

V-94679

CAT II (Medium)

Symantec ProxySG must back up event logs onto a different system or system component than the system or component being audited.

Rule ID

SV-104509r1_rule

STIG

Symantec ProxySG NDM Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-001348

Discussion

Protection of log data includes assuring log data is not accidentally lost or deleted. Regularly backing up audit records to a different system or onto separate media than the system being audited helps to assure, in the event of a catastrophic system failure, the audit records will be retained. This helps to ensure a compromise of the information system being audited does not also result in a compromise of the audit records.

Check Content

Verify event logging to a remote events collection server is configured in order to send event logs to a different system.

1. Log on to the Web Management Console.
2. Click Maintenance >> Event Logging >> Syslog.
3. Confirm that "Syslog" is "Enabled" and a syslog server is specified.

If Symantec ProxySG does not back up event logs onto a different system or system component than the system or component being audited, this is a finding.

Fix Text

Configure event logging to a remote events server to ensure that event logs are recorded on a different system.

To configure Syslog:
1. Log on to the Web Management Console.
2. Click Maintenance >> Event Logging >> Syslog.
3. Enter the IP address or name of a syslog server, click "OK".
4. Repeat step 3 for any additional syslog servers.
5. Click "Apply".