Understanding Event Logging for Junos OS in FIPS Mode
A secure Juniper Networks Junos operating system (Junos OS) environment requires the auditing of configuration changes through the system log (syslog).
In addition, if configuration changes are audited, Junos OS can:
Send automated responses to audit events (system log entry creation).
Allow the Crypto Officer to examine audit logs.
Send audit files to external servers.
Allow the Crypto Officer to return the system to a known state.
Event logging for Junos OS in FIPS mode must capture the following events:
Changes to secret data in the configuration
Login and logout of users
System startup and shutdown
We recommend that FIPS logging also include:
Capturing all changes to the configuration
Storing logging information remotely