The application server must be configured to remotely view all content related to an established administrative user session in real time.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-35157 | SRG-APP-000094-AS-000055 | SV-46444r1_rule | Low |
| Description |
|---|
| User sessions for an application server are in the context of server management only. The application server must be configured to log all administrative session data to a remote location for viewing. |
| STIG | Date |
|---|---|
| Application Server Security Requirements Guide | 2013-01-08 |
Details
| Check Text ( C-43541r3_chk ) |
|---|
| Review the AS configuration to determine if the AS is configured to capture/record and log all content related to an administrator session. Have an administrator log into the server and make several security relevant configuration changes and verify these changes were recorded in an audit log that can be remotely viewed. If these requirements are not met, this is a finding. |
| Fix Text (F-39707r2_fix) |
|---|
| Configure the AS to capture/record and log all content related to an administrator session and enable secured remote viewing of log data. |