STIGQter STIGQter: STIG Summary: ISEC7 EMM Suite v6.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2019:

The ISEC7 EMM Suite, Tomcat installation, and ISEC7 Suite monitor must be configured to use the Windows Trust Store for the storage of digital certificates and keys.

DISA Rule

SV-106379r1_rule

Vulnerability Number

V-97265

Group Title

SRG-APP-000516

Rule Version

ISEC-06-002530

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Log in to the ISEC7 EMM Console.

Navigate to Administration >> Configuration >> Apache Tomcat Settings.

Select the type of Keystore to be used as:

Windows-MY

Check Contents

Log in to the ISEC7 EMM Console.

Navigate to Administration >> Configuration >> Apache Tomcat Settings.

Verify that the type of Keystore being used is: Windows-MY

If the type of Keystore being used is not Windows-MY, this is a finding.

Vulnerability Number

V-97265

Documentable

False

Rule Version

ISEC-06-002530

Severity Override Guidance

Log in to the ISEC7 EMM Console.

Navigate to Administration >> Configuration >> Apache Tomcat Settings.

Verify that the type of Keystore being used is: Windows-MY

If the type of Keystore being used is not Windows-MY, this is a finding.

Check Content Reference

M

Target Key

3503

Comments