STIGQter: STIG Summary: Oracle HTTP Server 12.1.3 Security Technical Implementation Guide Version: 1 Release: 7 Benchmark Date: 24 Jul 2020:

The CustomIdentityPrivateKeyPassPhrase property of the Node Manager configured to support OHS must be configured for secure communication.

DISA Rule

SV-79101r1_rule

Vulnerability Number

V-64611

Group Title

SRG-APP-000516-WSR-000174

Rule Version

OH12-1X-000186

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

1. Open $DOMAIN_HOME/nodemanager/nodemanager.properties with an editor.

2. Search for the "CustomIdentityPrivateKeyPassPhrase" property.

3. Set the "CustomIdentityPrivateKeyPassPhrase" property to the password protecting the Private Key of the Node Manager identity, add the property if it does not exist.

Check Contents

1. Open $DOMAIN_HOME/nodemanager/nodemanager.properties with an editor.

2. Search for the "CustomIdentityPrivateKeyPassPhrase" property.

3. If the property does not exist or is set improperly, this is a finding.

Vulnerability Number

V-64611

Documentable

False

Rule Version

OH12-1X-000186

Severity Override Guidance

1. Open $DOMAIN_HOME/nodemanager/nodemanager.properties with an editor.

2. Search for the "CustomIdentityPrivateKeyPassPhrase" property.

3. If the property does not exist or is set improperly, this is a finding.

Check Content Reference

M

Target Key

2753

Comments