STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to VMware vRealize Automation 7.x vAMI Security Technical Implementation Guide

V-240965

CAT II (Medium)

The vAMI must utilize syslog.

Rule ID

SV-240965r879886_rule

STIG

VMware vRealize Automation 7.x vAMI Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-001851

Discussion

Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Protecting log data is important during a forensic investigation to ensure investigators can track and understand what may have occurred. Off-loading should be set up as a scheduled task but can be configured to be run manually, if other processes during the off-loading are manual. Off-loading is a common process in information systems with limited log storage capacity.

Check Content

At the command prompt, execute the following command:

grep traceFile /opt/vmware/etc/sfcb/sfcb.cfg

If the value of "traceFile" is not "syslog', this is a finding.

Fix Text

Navigate to and open /opt/vmware/etc/sfcb/sfcb.cfg,

Configure the sfcb.cfg file with the following value: 'traceFile: syslog'