STIGQter: STIG Summary: VMW vRealize Automation 7.x HA Proxy Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

HAProxy must use a logging mechanism that is configured to alert the ISSO and SA in the event of a processing failure.

DISA Rule

SV-99789r1_rule

Vulnerability Number

V-89139

Group Title

SRG-APP-000108-WSR-000166

Rule Version

VRAU-HA-000085

Severity

CAT II

CCI(s)

• CCI-000139 - The information system alerts designated organization-defined personnel or roles in the event of an audit processing failure.

Weight

10

Fix Recommendation

Ensure logging failures result in warnings to the ISSO and SA at a minimum.

Check Contents

Interview the ISSO.

Determine if logging failure events are monitored, and warnings provided to the ISSO.

If logging failure events do not provide warnings in accordance with organization policies, this is a finding.

If alerts are not sent or the web server is not configured to use a dedicated logging tool that meets this requirement, this is a finding.

Vulnerability Number

V-89139

Documentable

False

Rule Version

VRAU-HA-000085

Severity Override Guidance

Interview the ISSO.

Determine if logging failure events are monitored, and warnings provided to the ISSO.

If logging failure events do not provide warnings in accordance with organization policies, this is a finding.

If alerts are not sent or the web server is not configured to use a dedicated logging tool that meets this requirement, this is a finding.

Check Content Reference

M

Target Key

3455

Comments