This shows you the differences between two versions of the page.

Link to this comparison view

centos7:4:1:2 [2017/05/04 15:55] (current)
Line 1: Line 1:
 +======4.1.2 Ensure auditd service is enabled (Scored)======
 +=====Profile Applicability=====  ​
 +Level 2 - Server
 +Level 2 - Workstation ​
 +Turn on the ''​auditd''​ daemon to record system events.
 +The capturing of system events provides system administrators with information to allow them to determine if unauthorized access to their system is occurring.
 +=====Audit===== ​
 +Run the following command to verify ''​auditd''​ is enabled:
 +# systemctl is-enabled auditd ​
 +Verify result is "​enabled"​.
 +=====Remediation===== ​
 +Run the following command to enable ''​auditd'':​
 +# systemctl enable auditd