As a system architect, I need to ensure support for updated integration requirements. Instructions are contained within the ATO document folder with Control ID AU-02 Account Management.
Motivation and context
Applications and scripts need to be able to audit and report
Acceptance criteria
How do we know when this work is done?
[ ] authentication successes and failures
[ ] access control successes and failures
[ ] All system level activity
[ ] session activity, such as pages visited, connection details (browser, source ip)
[ ] changes in user privileges
[ ] changes to configuration settings
[ ] application or database errors and alerts
[ ] alerts from security controls, such as firewalls, IDSes and antimalware.
[# 💡 Summary #
As a system architect, I need to ensure support for updated integration requirements. Instructions are contained within the ATO document folder with Control ID AU-02 Account Management.
Motivation and context
Applications and scripts need to be able to audit and report
Acceptance criteria
How do we know when this work is done?