STIGQter: STIG Summary: VMware vRealize Operations Manager 6.x Application Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

The vRealize Operations appliance must be configured in accordance with the security configuration settings based on DoD security configuration or implementation guidance, including STIGs, NSA configuration guides, CTOs, and DTMs.

DISA Rule

SV-98863r1_rule

Vulnerability Number

V-88213

Group Title

SRG-APP-000516-AS-000237

Rule Version

VROM-AP-000655

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Obtain the most current vRealize Operations STIG. Ensure that this vROps appliance is configured with all current requirements.

Check Contents

Obtain the current vRealize Operations STIGs from the ISSO.

Verify that this Security Technical Implementation Guide (STIG) is the most current STIG available for vRealize Operations.

Assess all of the organization's vROps installations to ensure that they are fully compliant with the most current STIG.

If the most current version of the vROps STIG was not used, or if the vROps appliance configuration is not compliant with the most current STIG, this is a finding.

Vulnerability Number

V-88213

Documentable

False

Rule Version

VROM-AP-000655

Severity Override Guidance

Obtain the current vRealize Operations STIGs from the ISSO.

Verify that this Security Technical Implementation Guide (STIG) is the most current STIG available for vRealize Operations.

Assess all of the organization's vROps installations to ensure that they are fully compliant with the most current STIG.

If the most current version of the vROps STIG was not used, or if the vROps appliance configuration is not compliant with the most current STIG, this is a finding.

Check Content Reference

M

Target Key

3453

Comments