The application server must provide system notifications to a list of response personnel who are identified by name and/or role.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-35444	SRG-APP-000286-AS-000173	SV-46731r1_rule		Medium

Description
Incident response applications are, by their nature, designed to monitor, detect, and alarm on defined events occurring on the system or on the network. A large part of their functionality is the accurate and timely notification of events. Application servers can act as a resource for incident responders by providing information and notifications needed for support personnel to respond to application server incidents. Notifications can be made more efficient by the utilization of groups containing the members who would be responding to a particular alarm or event.

Description

Incident response applications are, by their nature, designed to monitor, detect, and alarm on defined events occurring on the system or on the network. A large part of their functionality is the accurate and timely notification of events. Application servers can act as a resource for incident responders by providing information and notifications needed for support personnel to respond to application server incidents. Notifications can be made more efficient by the utilization of groups containing the members who would be responding to a particular alarm or event.

STIG	Date
Application Server Security Requirements Guide	2013-01-08

Details

Check Text ( C-43798r1_chk )
Review the AS configuration to ensure the AS can be configured to notify response personnel identified by name and/or role when it detects changes to the security configuration or security-related operational errors. If the AS does not notify in these cases, this is a finding.

Fix Text (F-39988r1_fix)
Configure the AS to notify a list of response personnel when the AS detects changes to the security configuration or security-related operational errors.