Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Understanding Event Logging for Junos OS in FIPS Mode

 

A secure Juniper Networks Junos operating system (Junos OS) environment requires the auditing of configuration changes through the system log (syslog).

In addition, if configuration changes are audited, Junos OS can:

  • Send automated responses to audit events (system log entry creation).

  • Allow the Crypto Officer to examine audit logs.

  • Send audit files to external servers.

  • Allow the Crypto Officer to return the system to a known state.

Event logging for Junos OS in FIPS mode must capture the following events:

  • Changes to secret data in the configuration

  • Committed changes

  • Login and logout of users

  • System startup and shutdown

Best Practice

We recommend that FIPS logging also include:

  • Capturing all changes to the configuration

  • Storing logging information remotely