STIGQter: STIG Summary: IBM MQ Appliance v9.0 NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 05 Jun 2017:

Access to the MQ Appliance network device must employ automated mechanisms to centrally apply authentication settings.

DISA Rule

SV-89693r1_rule

Vulnerability Number

V-75019

Group Title

SRG-APP-000516-NDM-000337

Rule Version

MQMH-ND-001460

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-000371 - The organization employs automated mechanisms to centrally apply configuration settings for organization-defined information system components.
• CCI-000372 - The organization employs automated mechanisms to centrally verify configuration settings for organization-defined information system components.
• CCI-002353 - The information system transmits organization-defined access authorization information using organization-defined security safeguards to organization-defined information systems which enforce access control decisions.

Weight

10

Fix Recommendation

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Set Authentication Method to LDAP.

Configure LDAP server connection requirements as required.

Check Contents

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Verify the Authentication Method is set to LDAP.

If MQ is not set to LDAP authentication, this is a finding.

Vulnerability Number

V-75019

Documentable

False

Rule Version

MQMH-ND-001460

Severity Override Guidance

Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings.

Verify the Authentication Method is set to LDAP.

If MQ is not set to LDAP authentication, this is a finding.

Check Content Reference

M

Target Key

3243

Comments