Rule ID
SV-279450r1192366_rule
Version
V1R1
Time synchronization of system clocks is essential for the correct execution of many system services, including identification and authentication processes that involve certificates and time-of-day restrictions as part of access control. Denial of service or failure to deny expired credentials may result without properly synchronized clocks within and between systems and system components. Time is commonly expressed in Coordinated Universal Time (UTC), a modern continuation of Greenwich Mean Time (GMT), or local time with an offset from UTC. The granularity of time measurements refers to the degree of synchronization between system clocks and reference clocks, such as clocks synchronizing within hundreds of milliseconds or tens of milliseconds. Organizations may define different time granularities for system components. Time service can be critical to other security capabilities such as access control and identification and authentication, depending on the nature of the mechanisms used to support the capabilities. Satisfies: SRG-APP-000920-AS-000320, SRG-APP-000371-AS-000077
Confirm the Prism Element is configured to use an authoritative NTP source. 1. Log in to Prism Element. 2. Click the gear icon in the upper-right corner. 3. Navigate to "NTP Servers". 4. Verify external NTP servers have been configured. If external NTP sources are not configured, this is a finding.
Configure the Prism Element to use an authoritative NTP time source. 1. Log in to Prism Element. 2. Click the gear icon in the upper-right corner. 3. Navigate to "NTP Servers". 4. Configure an authoritative NTP server.