Common use of Audit Logging Clause in Contracts

Audit Logging. Audit logging shall be enabled on systems that contain Customer Content to capture at a minimum the security-related events defined below: (i) Account logon (both successful and unsuccessful) and logoff; (ii) Failed access attempts; (iii) Account lockouts; (iv) Elevation of privileges (both successful and unsuccessful), and every use of elevated privileges or actions taken while privilege is elevated; (v) Creation, modification and deletion (both successful and unsuccessful) of: (a) Accounts or logon identifiers; (b) Group memberships; (c) Access privileges/attributes for Accounts and groups; (d) User rights and permissions. (vi) Changes in account or logon identifier status (both successful and unsuccessful); (vii) Modifications to, or unauthorized attempts to modify, the security configuration, security function or authorization policy.

Audit Logging. Audit logging shall be enabled on systems that contain Customer Content to capture at a minimum the security-related events defined below: (i) Account logon (both successful and unsuccessful) and logoff; (ii) Failed access attempts; (iii) Account lockouts; (iv) Elevation of privileges (both successful and unsuccessful), and every use of elevated privileges or actions taken while privilege is elevated; (v) Creation, modification and deletion (both successful and unsuccessful) of: (a) Accounts or logon identifiers; (b) Group memberships; (c) Access privileges/attributes for Accounts accounts and groups; (d) User rights and permissions. (vi) Changes in account or logon identifier status (both successful and unsuccessful); (vii) Modifications to, or unauthorized attempts to modify, the security configuration, security function or authorization policy.