STIGs RMF Controls Compare

STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago

Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.

← AU-9 (5) — Protection of Audit Information

CCI-001896

Definition

Enforce dual authorization for movement and/or deletion of organization-defined audit information.

Parent Control

AU-9 (5)Protection of Audit InformationAudit and Accountability

Linked STIG Checks (4)

V-276014CAT IAx-OS must off-load audit records onto a different system or media than the system being audited.Axonius Federal Systems Ax-OS Security Technical Implementation Guide V-203715CAT IIThe operating system must enforce dual authorization for movement and/or deletion of all audit information, when such movement or deletion is not part of an authorized automatic process.General Purpose Operating System Security Requirements Guide V-207467CAT IIThe VMM must enforce dual authorization for movement and/or deletion of all audit information, when such movement or deletion is not part of an authorized automatic process.Virtual Machine Manager Security Requirements Guide V-269586CAT IXylok Security Suite must use a central log server for auditing records.Xylok Security Suite 20.x Security Technical Implementation Guide