STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 5 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

AU-2

Audit and AccountabilityRev 5

Event Logging

CCI Identifiers (10)

CCI-000123Identify the organization-defined event types that the system is capable of logging in support of the audit function.CCI-000124Coordinate the event logging function with other organizational entities requiring audit-related information to guide and inform the selection criteria for events to be logged.CCI-000125Provide a rationale for why the event types selected for logging are deemed to be adequate for support after-the-fact investigations of incidents.CCI-000126Specify the organization-defined event types (subset of the event types defined in AU-2a) along with the frequency of (or situation requiring logging for each identified event type.CCI-000129The organization defines in the auditable events that the information system must be capable of auditing based on a risk assessment and mission/business needs.CCI-001484Defines the frequency of (or situation requiring) logging for each identified event.CCI-001485Defines the event types for logging within the system.CCI-001571Defines the event types that the system is capable of logging in support of the audit function.CCI-003810Review and update the event types selected for logging on an organization-defined frequency.CCI-003811Defines the frequency at which the event types selected for logging will be reviewed and updated.

Linked STIG Checks (39)

Across 4 STIGs. Click to expand.