STIGQter: STIG Summary: JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:SV-213531r615939_rule
V-213531
SRG-APP-000171-AS-000119
JBOS-AS-000300
CAT II
10
Configure the application server to mask the java keystore password as per the procedure described in section 11.13.3 -Password Vault System in the JBoss_Enterprise_Application_Platform-6.3-Administration_and_Configuration_Guide-en-US document.
The default location for the keystore used by the JBoss vault is the <JBOSS_HOME>/vault/ folder.
If a vault keystore has been created, by default it will be in the file: <JBOSS_HOME>/vault/vault.keystore. The file stores a single key, with the default alias vault, which will be used to store encrypted strings, such as passwords, for JBoss EAP.
Have the system admin provide the procedure used to encrypt the keystore password that unlocks the keystore.
If the system administrator is unable to demonstrate or provide written process documentation on how to encrypt the keystore password, this is a finding.
V-213531
False
JBOS-AS-000300
The default location for the keystore used by the JBoss vault is the <JBOSS_HOME>/vault/ folder.
If a vault keystore has been created, by default it will be in the file: <JBOSS_HOME>/vault/vault.keystore. The file stores a single key, with the default alias vault, which will be used to store encrypted strings, such as passwords, for JBoss EAP.
Have the system admin provide the procedure used to encrypt the keystore password that unlocks the keystore.
If the system administrator is unable to demonstrate or provide written process documentation on how to encrypt the keystore password, this is a finding.
M
3987