STIGQter STIGQter: STIG Summary: IBM MQ Appliance v9.0 NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 05 Jun 2017:

The MQ Appliance network device must enforce password complexity by requiring that at least one lower-case character be used.

DISA Rule

SV-89629r1_rule

Vulnerability Number

V-74955

Group Title

SRG-APP-000167-NDM-000255

Rule Version

MQMH-ND-000590

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Set Authentication Method to LDAP.

Configure LDAP server connection as required.

Expand Password Policy.

Check the Require Mixed Case check box.

Check Contents

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Verify the Authentication Method is set to LDAP.

Expand Password Policy.

Verify the (local) Password Policy Require Mixed Case check box is checked.

If MQ is not set to LDAP authentication or if the local password policy is not configured to meet the requirement, this is a finding.

Vulnerability Number

V-74955

Documentable

False

Rule Version

MQMH-ND-000590

Mitigations

MQMH-ND-000590

Severity Override Guidance

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Verify the Authentication Method is set to LDAP.

Expand Password Policy.

Verify the (local) Password Policy Require Mixed Case check box is checked.

If MQ is not set to LDAP authentication or if the local password policy is not configured to meet the requirement, this is a finding.

Check Content Reference

M

Mitigation Control

Configure LDAP connection as required.

Target Key

3243

Comments