STIGQter STIGQter: STIG Summary: IBM MQ Appliance v9.0 NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 05 Jun 2017:

The MQ Appliance network device must notify the administrator, upon successful logon (access), of the location of last logon (terminal or IP address) in addition to the result, date and time of the last logon (access).

DISA Rule

SV-89665r1_rule

Vulnerability Number

V-74991

Group Title

SRG-APP-000346-NDM-000291

Rule Version

MQMH-ND-001010

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Set Authentication Method to LDAP. Configure LDAP connection as required.

Configure notification alerts in third party event notification solution.

Check Contents

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Verify the Authentication Method is set to LDAP. Request third-party log monitoring alarming information that provides the notification alerts regarding logons, dates, times, and source IP addresses.

If it is not set to LDAP and third-party alarming notifications are not used, this is a finding.

Vulnerability Number

V-74991

Documentable

False

Rule Version

MQMH-ND-001010

Severity Override Guidance

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Verify the Authentication Method is set to LDAP. Request third-party log monitoring alarming information that provides the notification alerts regarding logons, dates, times, and source IP addresses.

If it is not set to LDAP and third-party alarming notifications are not used, this is a finding.

Check Content Reference

M

Target Key

3243

Comments