SV-100617r1_rule
V-89967
SRG-APP-000099-WSR-000061
VRAU-TC-000230
CAT II
10
Navigate to and open /etc/vcac/server.xml.
Navigate to and locate <Host>.
Configure the <Host> node with the <AccessLogValve> below.
Note: The "AccessLogValve" should be configured as follows:
<Valve className="org.apache.catalina.valves.AccessLogValve"
checkExists="true"
directory="logs"
pattern="%h %l %u %t "%r" %s %b"
prefix="access_log"
requestAttributesEnabled="true"
rotatable="false"
suffix=".txt"/>
At the command prompt, execute the following command:
tail /storage/log/vmware/vcac/access_log.YYYY-MM-dd.txt
Note: Substitute the actual date in the file name.
If the HTTP status codes are not being recorded, this is a finding.
Note: HTTP status codes are 3-digit codes, which are recorded immediately after "HTTP/1.1"
V-89967
False
VRAU-TC-000230
At the command prompt, execute the following command:
tail /storage/log/vmware/vcac/access_log.YYYY-MM-dd.txt
Note: Substitute the actual date in the file name.
If the HTTP status codes are not being recorded, this is a finding.
Note: HTTP status codes are 3-digit codes, which are recorded immediately after "HTTP/1.1"
M
3439