STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018:

The WebSphere Application Server groups in the user registry mapped to WebSphere auditor roles must be configured in accordance with the security plan.

DISA Rule

SV-95919r1_rule

Vulnerability Number

V-81205

Group Title

SRG-APP-000016-AS-000013

Rule Version

WBSP-AS-000080

Severity

CAT II

CCI(s)

• CCI-000067 - The information system monitors remote access methods.
• CCI-002234 - The information system audits the execution of privileged functions.

Weight

10

Fix Recommendation

Document all groups in an Auditor role in the security plan.

In the administrative console, navigate to Users and Groups >> Administrative group roles.

If an unauthorized group is in the auditor role, remove the auditor role from the group.

Restart the DMGR and all the JVMs.

Check Contents

Review System Security Plan documentation.

Identify groups and roles.

In the administrative console, navigate to Users and Groups >> Administrative Group Roles.

Check the roles for each group and compare to System Security Plan.

If any group is not authorized by the ISSO/ISSM to be in an auditor role, this is a finding.

Vulnerability Number

V-81205

Documentable

False

Rule Version

WBSP-AS-000080

Severity Override Guidance

Review System Security Plan documentation.

Identify groups and roles.

In the administrative console, navigate to Users and Groups >> Administrative Group Roles.

Check the roles for each group and compare to System Security Plan.

If any group is not authorized by the ISSO/ISSM to be in an auditor role, this is a finding.

Check Content Reference

M

Target Key

3399

Comments