Content of Audit Records | AU-3

Description

Where feasible, Information Resource Custodians should use the Center for Internet Security (CIS) Benchmarks Level I standards to configure even logging. Audit records contain information that establishes the following:

  • The type of event that occurred. 
  • When the event occurred.
  • The software or hardware component of the information resource where the event occurred.
  • The source of the event (e.g. network address).
  • The outcome (success or failure) of the event.
  • Identity of any individuals, subjects, or objects associated with the event.

Last updated: 5/12/2026

Contact Hours or Questions?

Information on Tech Support