STIGQter: STIG Summary: IBM WebSphere Traditional V9.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 23 Aug 2018:

The WebSphere Application Server distribution and consistency services (DCS) transport links must be encrypted.

DISA Rule

SV-96107r1_rule

Vulnerability Number

V-81393

Group Title

SRG-APP-000440-AS-000166

Rule Version

WBSP-AS-001620

Severity

CAT II

CCI(s)

• CCI-002420 - The information system maintains the confidentiality and/or integrity of information during preparation for transmission.

Weight

10

Fix Recommendation

From the admin console navigate to Core groups >> for every Core Group listed.

Select the [Core Group Name].

Under "Transport" type, select "CHANNEL_FRAMEWORK" button.

In the "Transport chain" drop down box set to "DCS-SECURE".

Click "Save".

Sync the configuration.

Check Contents

From the admin console navigate to Servers >> Core groups.

For every Core Group listed, select the Core Group [CoreGroup Name].

Under "Transport Type", select the "Channel Framework" button.

If the "transport chain" drop down box is not set to "DCS-Secure", this is a finding.

Vulnerability Number

V-81393

Documentable

False

Rule Version

WBSP-AS-001620

Severity Override Guidance

From the admin console navigate to Servers >> Core groups.

For every Core Group listed, select the Core Group [CoreGroup Name].

Under "Transport Type", select the "Channel Framework" button.

If the "transport chain" drop down box is not set to "DCS-Secure", this is a finding.

Check Content Reference

M

Target Key

3399

Comments