UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The vCenter ESX Agent Manager service "ErrorReportValve showServerInfo" must be set to "false".


Overview

Finding ID Version Rule ID IA Controls Severity
V-259014 VCEM-80-000067 SV-259014r934700_rule Medium
Description
The Error Report Valve is a simple error handler for HTTP status codes that will generate and return HTML error pages. It can also be configured to return predefined static HTML pages for specific status codes and/or exception types. Disabling "showServerInfo" will only return the HTTP status code and remove all CSS from the default nonerror-related HTTP responses.
STIG Date
VMware vSphere 8.0 vCenter Appliance ESX Agent Manager (EAM) Security Technical Implementation Guide 2023-10-29

Details

Check Text ( C-62754r934698_chk )
At the command prompt, run the following command:

# xmllint --xpath '/Server/Service/Engine/Host/Valve[@className="org.apache.catalina.valves.ErrorReportValve"]' /usr/lib/vmware-eam/web/conf/server.xml

Example result:



If the "ErrorReportValve" element is not defined or "showServerInfo" is not set to "false", this is a finding.
Fix Text (F-62663r934699_fix)
Navigate to and open:

/usr/lib/vmware-eam/web/conf/server.xml

Locate the following Host block:


...


Inside this block, add or update the following on a new line:



Restart the service with the following command:

# vmon-cli --restart eam