| ALMA-09-053810 | V1R4 | AlmaLinux OS 9 System Administrator (SA) and/or information system security officer (ISSO) (at a minimum) must be alerted of an audit processing failure event. | AlmaLinux OS 9 |
| ALMA-09-053920 | V1R4 | AlmaLinux OS 9 must have mail aliases to notify the information system security officer (ISSO) and system administrator (SA) (at a minimum) in the event of an audit processing failure. | AlmaLinux OS 9 |
| APPL-14-001030 | V2R4 | The macOS system must configure audit capacity warning. | macOS 14 - Sonoma |
| APPL-15-001030 | V1R5 | The macOS system must configure audit capacity warning. | macOS 15 - Sequoia |
| OL07-00-030010 | V3R3 | The Oracle Linux operating system must shut down upon audit processing failure, unless availability is an overriding concern. If availability is a concern, the system must alert the designated staff (System Administrator [SA] and Information System Security Officer [ISSO] at a minimum) in the event of an audit processing failure. | Oracle Linux 7 |
| OL08-00-030020 | V2R6 | The OL 8 System Administrator (SA) and Information System Security Officer (ISSO) (at a minimum) must be alerted of an audit processing failure event. | Oracle Linux 8 |
| OL08-00-030030 | V2R6 | The OL 8 Information System Security Officer (ISSO) and System Administrator (SA) (at a minimum) must have mail aliases to be notified of an audit processing failure. | Oracle Linux 8 |
| OL09-00-000815 | V1R3 | OL 9 must forward mail from postmaster to the root account using a postfix alias. | Oracle Linux 9 |
| OL09-00-000820 | V1R3 | OL 9 must take appropriate action when a critical audit processing failure occurs. | Oracle Linux 9 |
| OL09-00-000825 | V1R3 | The OL 9 system administrator (SA) and/or information system security officer (ISSO) (at a minimum) must be alerted of an audit processing failure event. | Oracle Linux 9 |
| OL09-00-002405 | V1R3 | OL 9 must have mail aliases to notify the information system security officer (ISSO) and system administrator (SA) (at a minimum) in the event of an audit processing failure. | Oracle Linux 9 |
| RHEL-07-030010 | V3R9 | The Red Hat Enterprise Linux operating system must shut down upon audit processing failure, unless availability is an overriding concern. If availability is a concern, the system must alert the designated staff (System Administrator [SA] and Information System Security Officer [ISSO] at a minimum) in the event of an audit processing failure. | Red Hat Enterprise Linux 7 |
| RHEL-08-030020 | V2R5 | The RHEL 8 System Administrator (SA) and Information System Security Officer (ISSO) (at a minimum) must be alerted of an audit processing failure event. | Red Hat Enterprise Linux 8 |
| RHEL-08-030030 | V2R5 | The RHEL 8 Information System Security Officer (ISSO) and System Administrator (SA) (at a minimum) must have mail aliases to be notified of an audit processing failure. | Red Hat Enterprise Linux 8 |
| RHEL-09-252060 | V2R6 | RHEL 9 must forward mail from postmaster to the root account using a postfix alias. | Red Hat Enterprise Linux 9 |
| RHEL-09-653070 | V2R6 | RHEL 9 System Administrator (SA) and/or information system security officer (ISSO) (at a minimum) must be alerted of an audit processing failure event. | Red Hat Enterprise Linux 9 |
| RHEL-09-653125 | V2R6 | RHEL 9 must have mail aliases to notify the information system security officer (ISSO) and system administrator (SA) (at a minimum) in the event of an audit processing failure. | Red Hat Enterprise Linux 9 |
| RHEL-09-654265 | V2R6 | RHEL 9 must take appropriate action when a critical audit processing failure occurs. | Red Hat Enterprise Linux 9 |
| SLES-12-020040 | V3R2 | The Information System Security Officer (ISSO) and System Administrator (SA), at a minimum, must be alerted of a SUSE operating system audit processing failure event. | SUSE Linux Enterprise 12 |
| SLES-12-020050 | V3R2 | The Information System Security Officer (ISSO) and System Administrator (SA), at a minimum, must have mail aliases to be notified of a SUSE operating system audit processing failure. | SUSE Linux Enterprise 12 |
| SLES-15-030570 | V2R4 | The Information System Security Officer (ISSO) and System Administrator (SA), at a minimum, must be alerted of a SUSE operating system audit processing failure event. | SUSE Linux Enterprise 15 |
| SLES-15-030580 | V2R4 | The Information System Security Officer (ISSO) and System Administrator (SA), at a minimum, must have mail aliases to be notified of a SUSE operating system audit processing failure. | SUSE Linux Enterprise 15 |
| TOSS-04-030080 | V2R3 | TOSS must alert the ISSO and SA (at a minimum) in the event of an audit processing failure. | Tri-Lab Operating System Stack |
| UBTU-18-010300 | V2R15 | The Ubuntu operating system must alert the ISSO and SA (at a minimum) in the event of an audit processing failure. | Ubuntu 18.04 |
| UBTU-20-010117 | V2R3 | The Ubuntu operating system must alert the ISSO and SA (at a minimum) in the event of an audit processing failure. | Ubuntu 20.04 |
| UBTU-22-653025 | V2R6 | Ubuntu 22.04 LTS must alert the information system security officer (ISSO) and system administrator (SA) in the event of an audit processing failure. | Ubuntu 22.04 |
| UBTU-24-900980 | V1R1 | Ubuntu 24.04 LTS must alert the system administrator (SA) and information system security officer (ISSO) (at a minimum) in the event of an audit processing failure. | Ubuntu 24.04 |