STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Unified Endpoint Management Server Security Requirements Guide

V-234340

CAT II (Medium)

The UEM server must use host operating system clocks to generate time stamps for audit records.

Rule ID

SV-234340r960927_rule

STIG

Unified Endpoint Management Server Security Requirements Guide

Version

V2R4

CCIs

CCI-000159

Discussion

Without an internal clock used as the reference for the time stored on each event to provide a trusted common reference for the time, forensic analysis would be impeded. Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. If the internal clock is not used, the system may not be able to provide time stamps for log messages. Additionally, externally generated time stamps may not be accurate. Applications can use the capability of an operating system or purpose-built module for this purpose. Satisfies: OE.TIMESTAMP, FAU_GEN.1.2(1)

Check Content

Verify the UEM server uses host operating system clocks to generate time stamps for audit records.

If the UEM server does not use host operating system clocks to generate time stamps for audit records, this is a finding

Fix Text

Configure the UEM server to use host operating system clocks to generate time stamps for audit records.