STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018:

The WebSphere Application Server security auditing must be enabled.

DISA Rule

SV-95917r1_rule

Vulnerability Number

V-81203

Group Title

SRG-APP-000016-AS-000013

Rule Version

WBSP-AS-000070

Severity

CAT II

CCI(s)

• CCI-000067 - The information system monitors remote access methods.
• CCI-000166 - The information system protects against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.
• CCI-001312 - The information system generates error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.
• CCI-001314 - The information system reveals error messages only to organization-defined personnel or roles.
• CCI-001464 - The information system initiates session audits at system start-up.
• CCI-002234 - The information system audits the execution of privileged functions.

Weight

10

Fix Recommendation

In the administrative console, navigate to Security >> Security auditing to enable.

Restart the DMGR and all the JVMs.

Check Contents

In the administrative console, navigate to Security >> Security auditing.

If "Enable security auditing" is not enabled, this is a finding.

Vulnerability Number

V-81203

Documentable

False

Rule Version

WBSP-AS-000070

Severity Override Guidance

In the administrative console, navigate to Security >> Security auditing.

If "Enable security auditing" is not enabled, this is a finding.

Check Content Reference

M

Target Key

3399

Comments