Auditing: Event Log size for Security log must be at least 196608 KB

f9befa07-2636-4c53-a43f-db2035b9cdff

Inadequate log size will cause the log to fill up quickly. This may prevent audit events from being recorded properly and require frequent attention by administrative personnel.

Remediation

To fix this configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Event Log Service >> Security >> "Specify the maximum log file size (KB)" to "Enabled" with a "Maximum Log Size (KB)" of "196608" or greater.

STIG:
[Security event log size must be configured to 196608 KB or greater.]

Server 2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2021-08-18/finding/V-205797
Server 2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2021-09-29/finding/V-224938
Desktop: https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220780

CCI: CCI-001849
NIST 800-53: AU-4