STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018: STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018:SV-96055r1_rule
V-81341
SRG-APP-000395-AS-000109
WBSP-AS-001120
CAT II
10
From the admin console, navigate to Security >> SSL Certificate and Key Management >> SSL Configuration.
For each [NodeDefaultSSLSettings] select Quality of Protection (QoP) Settings.
Set "Client authentication" according to the security plan.
Review System Security Plan documentation.
Identify mutual authentication connection requirements.
From the admin console, navigate to Security >> SSL Certificate and Key Management >> SSL Configuration.
Select each [NodeDefaultSSLSettings] then go to Quality of Protection (QoP) Settings.
If "Client authentication" is not set according to the security plan, this is a finding.
Note: with LDAP registry, the entire DN in the certificate is used to look up LDAP. Filters may be configured. With other registries, only the first attribute after the first "=", e.g., CN=<user> is used.
V-81341
False
WBSP-AS-001120
Review System Security Plan documentation.
Identify mutual authentication connection requirements.
From the admin console, navigate to Security >> SSL Certificate and Key Management >> SSL Configuration.
Select each [NodeDefaultSSLSettings] then go to Quality of Protection (QoP) Settings.
If "Client authentication" is not set according to the security plan, this is a finding.
Note: with LDAP registry, the entire DN in the certificate is used to look up LDAP. Filters may be configured. With other registries, only the first attribute after the first "=", e.g., CN=<user> is used.
M
3399