SV-79015r1_rule
V-64525
SRG-APP-000427-WSR-000186
OH12-1X-000302
CAT II
10
1. Open every .conf file (e.g., ssl.conf) included in $DOMAIN_HOME/config/fmwconfig/components/OHS/<componentName>/httpd.conf with an editor that requires an SSL-enabled "<VirtualHost>" directive.
2. Search for the "SSLVerifyClient" directive at the OHS server, virtual host, and/or directory configuration scope.
3. Set the "SSLVerifyClient" directive to "require", add the directive if it does not exist.
1. Open every .conf file (e.g., ssl.conf) included in $DOMAIN_HOME/config/fmwconfig/components/OHS/<componentName>/httpd.conf with an editor that requires an SSL-enabled "<VirtualHost>" directive.
2. Search for the "SSLVerifyClient" directive at the OHS server, virtual host, and/or directory configuration scopes.
3. If this directive is omitted or is not set to "require", this is a finding.
V-64525
False
OH12-1X-000302
1. Open every .conf file (e.g., ssl.conf) included in $DOMAIN_HOME/config/fmwconfig/components/OHS/<componentName>/httpd.conf with an editor that requires an SSL-enabled "<VirtualHost>" directive.
2. Search for the "SSLVerifyClient" directive at the OHS server, virtual host, and/or directory configuration scopes.
3. If this directive is omitted or is not set to "require", this is a finding.
M
2753