AOS must off-load audit records onto a different system or media than the system being audited.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-266966 | ARBA-ND-000325 | SV-266966r1039919_rule | Medium |
| Description |
| Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity. |
| STIG | Date |
| HPE Aruba Networking AOS NDM Security Technical Implementation Guide | 2024-10-29 |
Details
| Check Text (C-70890r1039917_chk) |
| Verify the AOS configuration with the following command: show logging server If a configured syslog server is not returned, this is a finding. |
| Fix Text (F-70793r1039918_fix) |
| Configure AOS with the following commands: configure terminal logging <IPv4 or IPv6 address> write memory |