STIGQter: STIG Summary: JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:SV-213539r615939_rule
V-213539
SRG-APP-000340-AS-000185
JBOS-AS-000475
CAT II
10
Run the following command.
<JBOSS_HOME>/bin/jboss-cli.sh -c -> connect -> cd /core-service=management/access-authorization :write-attribute(name=provider, value=rbac)
Restart JBoss.
Map users to roles by running the following command. Upper-case words are variables.
role-mapping=ROLENAME/include=ALIAS:add(name-USERNAME, type=USER ROLE)
Log on to the OS of the JBoss server with OS permissions that allow access to JBoss.
Using the relevant OS commands and syntax, cd to the <JBOSS_HOME>/bin/ folder.
Run the jboss-cli script.
Connect to the server and authenticate.
Run the following command:
For standalone servers:
"ls /core-service=management/access=authorization/"
For managed domain installations:
"ls /host=master/core-service=management/access=authorization/"
If the "provider" attribute is not set to "rbac", this is a finding.
V-213539
False
JBOS-AS-000475
Log on to the OS of the JBoss server with OS permissions that allow access to JBoss.
Using the relevant OS commands and syntax, cd to the <JBOSS_HOME>/bin/ folder.
Run the jboss-cli script.
Connect to the server and authenticate.
Run the following command:
For standalone servers:
"ls /core-service=management/access=authorization/"
For managed domain installations:
"ls /host=master/core-service=management/access=authorization/"
If the "provider" attribute is not set to "rbac", this is a finding.
M
3987