Requirements are derived from: Department of Commerce Information Technology Security Program Policy.
See section 4.5 (starting on page 38) of the DoC IT Security Program Policy (ITSPP) for the basic information.
Drupals' base line logging covers most of the FIPS requirements, failed login attempts, role changes, user deletions, user creation, content submission, critical errors and Apache covers the web server errors. What was missing was:
- content changes to menu's
- changes to fields
- changes to modules
Those have been incorporated into this logger.
Disable database logging and enable system logging and this module. Thats it. No other configuration is needed.