UCF STIG Viewer Logo

ESX Agent Manager must only run one webapp.


Overview

Finding ID Version Rule ID IA Controls Severity
V-239380 VCEM-67-000009 SV-239380r674634_rule Medium
Description
VMware ships ESX Agent Managers on the VCSA with one webapp. Any other path is potentially malicious and must be removed.
STIG Date
VMware vSphere 6.7 EAM Tomcat Security Technical Implementation Guide 2021-04-15

Details

Check Text ( C-42613r674632_chk )
At the command prompt, execute the following command:

# ls -A /usr/lib/vmware-eam/web/webapps

Expected result:

eam

If the output does not match the expected result, this is a finding.
Fix Text (F-42572r674633_fix)
For each unexpected directory returned in the check, run the following command:

# rm /usr/lib/vmware-eam/web/webapps/

Restart the service with the following command:

# vmon-cli --restart eam