STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Solaris 11 X86 Security Technical Implementation Guide

V-216233

CAT II (Medium)

The operating system must back up audit records at least every seven days onto a different system or system component than the system or component being audited.

Rule ID

SV-216233r958574_rule

STIG

Solaris 11 X86 Security Technical Implementation Guide

Version

V3R5

CCIs

CCI-001348

Discussion

Protection of log data includes assuring log data is not accidentally lost or deleted. Backing up audit records to a different system or onto separate media than the system being audited on an organizationally defined frequency helps to assure in the event of a catastrophic system failure, the audit records will be retained. This helps to ensure a compromise of the information system being audited does not also result in a compromise of the audit records. This requirement can be met by the operating system continuously sending records to a centralized logging server.

Check Content

This check applies to the global zone only. Determine the zone that you a currently securing.

# zonename

If the command output is "global" this check applies.

The operator must back up audit records at least every 7 days.

If the operator is unable to provide a documented procedure or the documented procedure is not being followed, then this is a finding.

Fix Text

This fix applies to the global zone only. Determine the zone that you are currently securing.

# zonename

If the command output is "global", this check applies.

The operator shall back up audit records at least every seven days.