AU-12 Audit Record Generation
Control
a.
Provide audit record generation capability for the event types the system is capable of auditing as defined in AU-2a on [all information system and network components where audit capability is deployed/available];
b.
Allow [Assignment: organization-defined personnel or roles] to select the event types that are to be logged by specific components of the system; and
Discussion
Audit records can be generated from many different system components. The event types specified in AU-2d are the event types for which audit logs are to be generated and are a subset of all event types for which the system can generate audit records.
FedRAMP-Defined Assignment / Selection Parameters
- AU-12 (a) [all information system and network components where audit capability is deployed/available] - system components that provide an audit record generation capability for the events types (defined in AU-02_ODP[02]) are defined;