STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018:

The WebSphere Application Server audit subsystem failure action must be set to Log warning.

DISA Rule

SV-95961r1_rule

Vulnerability Number

V-81247

Group Title

SRG-APP-000108-AS-000067

Rule Version

WBSP-AS-000650

Severity

CAT II

CCI(s)

CCI-000139 - The information system alerts designated organization-defined personnel or roles in the event of an audit processing failure.

Weight

Fix Recommendation

In the administrative console, navigate to Security >> Security auditing.

Click the "Audit subsystem failure action" dropdown box.

Select "Log Warning".

Click "Apply".

Click "Save" to save the configuration.

Restart the DMGR and all JVMs.

Check Contents

In the administrative console, navigate to Security >> Security auditing.

If "Audit subsystem failure action" is not set to "Log Warning", this is a finding.

Vulnerability Number

V-81247

Documentable

False

Rule Version

WBSP-AS-000650

Severity Override Guidance

In the administrative console, navigate to Security >> Security auditing.

If "Audit subsystem failure action" is not set to "Log Warning", this is a finding.

Check Content Reference

Target Key

3399

The WebSphere Application Server audit subsystem failure action must be set to Log warning.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments