FedRAMP Control Explorer

Controls

Access Control

Assessment, Authorization, and Monitoring

Audit and Accountability

Awareness and Training

Configuration Management

Contingency Planning

Identification and Authentication

Incident Response

Maintenance

Media Protection

Personnel Security

Physical and Environmental Protection

Planning

Risk Assessment

Supply Chain Risk Management

System and Communications Protection

System and Information Integrity

System and Services Acquisition

AU-12 Audit Record Generation

Control

Provide audit record generation capability for the event types the system is capable of auditing as defined in AU-2a on [all information system and network components where audit capability is deployed/available];

Allow [Assignment: organization-defined personnel or roles] to select the event types that are to be logged by specific components of the system; and

Generate audit records for the event types defined in AU-2c that include the audit record content defined in AU-3.

Discussion

Audit records can be generated from many different system components. The event types specified in AU-2d are the event types for which audit logs are to be generated and are a subset of all event types for which the system can generate audit records.

FedRAMP-Defined Assignment / Selection Parameters

AU-12 (a) [all information system and network components where audit capability is deployed/available] - system components that provide an audit record generation capability for the events types (defined in AU-02_ODP[02]) are defined;