The MQ Appliance network device must uniquely identify and authenticate organizational administrators (or processes acting on behalf of organizational administrators).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-74941 | MQMH-ND-000480 | SV-89615r1_rule | Medium |
| Description |
|---|
| To assure accountability and prevent unauthenticated access to the MQ Appliance, organizational administrators must be uniquely identified and authenticated for all network management accesses to prevent potential misuse and compromise of the system. |
| STIG | Date |
|---|---|
| IBM MQ Appliance v9.0 NDM Security Technical Implementation Guide | 2017-06-06 |
Details
| Check Text ( C-74799r1_chk ) |
|---|
| Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings. Verify the Authentication Method is set to LDAP. If MQ is not set to LDAP authentication, this is a finding. |
| Fix Text (F-81557r1_fix) |
|---|
| Log on to the MQ Appliance WebGUI as a privileged user. Go to Administration (gear icon) >> Access >> RBM Settings. Set Authentication Method to LDAP. Configure the LDAP connection as required. |