STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018: STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018:SV-95955r1_rule
V-81241
SRG-APP-000357-AS-000038
WBSP-AS-000590
CAT II
10
Identify Audit Service Provider log size and history retention based on component log policy.
Document those values in the System Security Plan.
From administrative console, click Security >> Security auditing >>Related Items>> Audit service provider >> [audit_service_provider_name].
Under Audit log file size specify the size of the file in MB as defined by your policy.
Under "Maximum number of audit logs files", specify the maximum number of logs you want to keep on the file system as defined by your policy.
Click "OK".
Click "Save".
Review System Security Plan documentation.
Identify the Audit Service Provider log size and rotation settings based on component log policy.
From administrative console, click Security >> Security auditing >> Audit service provider.
Select each [audit_service_provider_name].
If "Audit Log Size" and "Max Number of Audit Log Files" are not configured as per the System Security Plan, this is a finding.
V-81241
False
WBSP-AS-000590
Review System Security Plan documentation.
Identify the Audit Service Provider log size and rotation settings based on component log policy.
From administrative console, click Security >> Security auditing >> Audit service provider.
Select each [audit_service_provider_name].
If "Audit Log Size" and "Max Number of Audit Log Files" are not configured as per the System Security Plan, this is a finding.
M
3399