Oracle WebLogic Server 12c v1r6 Middleware

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: Oracle WebLogic Server 12c v1r6 Middleware

Updated: 10/5/2021

Authority: DISA STIG

Plugin: Unix

Revision: 1.4

Estimated Item Count: 90

File Details

Filename: DISA_STIG_Oracle_WebLogic_Server_12c_Linux_v1r6_Middleware.audit

Size: 258 kB

MD5: 565811d27a97472c0d4344f547d92f28

SHA256: db706133e010542e1e9859b0ba34d00c1d06318775fc7c8397eadce5bffb8a80

Audit Items

Description	Categories
WBLC-01-000009 - Oracle WebLogic must utilize cryptography to protect the confidentiality of remote access management sessions - SSL Listen Port	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-01-000009 - Oracle WebLogic must utilize cryptography to protect the confidentiality of remote access management sessions - Unsecure Listen Port	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-01-000010 - Oracle WebLogic must use cryptography to protect the integrity of the remote access session - SSL Listen Port	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-01-000010 - Oracle WebLogic must use cryptography to protect the integrity of the remote access session - Unsecure Listen Port	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-01-000011 - Oracle WebLogic must employ automated mechanisms to facilitate the monitoring and control of remote access methods.	ACCESS CONTROL
WBLC-01-000013 - Oracle WebLogic must ensure remote sessions for accessing security functions and security-relevant information are audited.
WBLC-01-000014 - Oracle WebLogic must support the capability to disable network protocols deemed by the organization to be non-secure except for explicitly identified components in support of specific operational requirements.	CONFIGURATION MANAGEMENT
WBLC-01-000018 - Oracle WebLogic must automatically audit account creation - Auditing Provider	AUDIT AND ACCOUNTABILITY
WBLC-01-000018 - Oracle WebLogic must automatically audit account creation - Configuration Audit Type	AUDIT AND ACCOUNTABILITY
WBLC-01-000019 - Oracle WebLogic must automatically audit account modification - Auditing Provider	AUDIT AND ACCOUNTABILITY
WBLC-01-000019 - Oracle WebLogic must automatically audit account modification - Configuration Audit Type	AUDIT AND ACCOUNTABILITY
WBLC-01-000030 - Oracle WebLogic must provide access logging that ensures users who are granted a privileged role (or roles) have their privileged activity logged.
WBLC-01-000032 - Oracle WebLogic must limit the number of failed login attempts to an organization-defined number of consecutive invalid attempts that occur within an organization-defined time period.	ACCESS CONTROL
WBLC-01-000033 - Oracle WebLogic must enforce the organization-defined time period during which the limit of consecutive invalid access attempts by a user is counted.	ACCESS CONTROL
WBLC-01-000034 - Oracle WebLogic must automatically lock accounts when the maximum number of unsuccessful login attempts is exceeded for an organization-defined time period or until the account is unlocked by an administrator.	ACCESS CONTROL
WBLC-02-000062 - Oracle WebLogic must protect against an individual falsely denying having performed a particular action.
WBLC-02-000065 - Oracle WebLogic must compile audit records from multiple components within the system into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance.	ACCESS CONTROL
WBLC-02-000069 - Oracle WebLogic must generate audit records for the DoD-selected list of auditable events - HTTP Access Log	AUDIT AND ACCOUNTABILITY
WBLC-02-000073 - Oracle WebLogic must produce process events and severity levels to establish what type of HTTPD-related events and severity levels occurred.	AUDIT AND ACCOUNTABILITY
WBLC-02-000074 - Oracle WebLogic must produce audit records containing sufficient information to establish what type of JVM-related events and severity levels occurred.
WBLC-02-000075 - Oracle WebLogic must produce process events and security levels to establish what type of Oracle WebLogic process events and severity levels occurred.	AUDIT AND ACCOUNTABILITY
WBLC-02-000076 - Oracle WebLogic must produce audit records containing sufficient information to establish when (date and time) the events occurred.
WBLC-02-000077 - Oracle WebLogic must produce audit records containing sufficient information to establish where the events occurred.
WBLC-02-000078 - Oracle WebLogic must produce audit records containing sufficient information to establish the sources of the events.
WBLC-02-000079 - Oracle WebLogic must produce audit records that contain sufficient information to establish the outcome (success or failure) of application server and application events.
WBLC-02-000080 - Oracle WebLogic must produce audit records containing sufficient information to establish the identity of any user/subject or process associated with the event.
WBLC-02-000081 - Oracle WebLogic must provide the ability to write specified audit record content to an audit log server.	ACCESS CONTROL
WBLC-02-000083 - Oracle WebLogic must provide a real-time alert when organization-defined audit failure events occur - Module-HealthState	SYSTEM AND INFORMATION INTEGRITY
WBLC-02-000083 - Oracle WebLogic must provide a real-time alert when organization-defined audit failure events occur - SMTP Notification	SYSTEM AND INFORMATION INTEGRITY
WBLC-02-000084 - Oracle WebLogic must alert designated individual organizational officials in the event of an audit processing failure - Module-HealthState	SYSTEM AND INFORMATION INTEGRITY
WBLC-02-000084 - Oracle WebLogic must alert designated individual organizational officials in the event of an audit processing failure - SMTP Notification	SYSTEM AND INFORMATION INTEGRITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - Module-HealthState	SYSTEM AND INFORMATION INTEGRITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - SMTP Notification	SYSTEM AND INFORMATION INTEGRITY
WBLC-02-000093 - Oracle WebLogic must use internal system clocks to generate time stamps for audit records.
WBLC-02-000094 - Oracle WebLogic must synchronize with internal information system clocks which, in turn, are synchronized on an organization-defined frequency with an organization-defined authoritative time source.
WBLC-02-000095 - Oracle WebLogic must protect audit information from any type of unauthorized read access.
WBLC-02-000098 - Oracle WebLogic must protect audit tools from unauthorized access.
WBLC-02-000099 - Oracle WebLogic must protect audit tools from unauthorized modification.
WBLC-02-000100 - Oracle WebLogic must protect audit tools from unauthorized deletion.
WBLC-03-000125 - Oracle WebLogic must limit privileges to change the software resident within software libraries (including privileged programs).
WBLC-03-000127 - Oracle WebLogic must adhere to the principles of least functionality by providing only essential capabilities.
WBLC-03-000128 - Oracle WebLogic must prohibit or restrict the use of unauthorized functions, ports, protocols, and/or services.	CONFIGURATION MANAGEMENT
WBLC-03-000129 - Oracle WebLogic must utilize automated mechanisms to prevent program execution on the information system.	CONFIGURATION MANAGEMENT
WBLC-05-000150 - Oracle WebLogic must uniquely identify and authenticate users (or processes acting on behalf of users).	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000153 - Oracle WebLogic must authenticate users individually prior to using a group authenticator.	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000160 - Oracle WebLogic must enforce minimum password length.	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000162 - Oracle WebLogic must enforce password complexity by the number of upper-case characters used.	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000163 - Oracle WebLogic must enforce password complexity by the number of lower-case characters used.	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000164 - Oracle WebLogic must enforce password complexity by the number of numeric characters used.	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000165 - Oracle WebLogic must enforce password complexity by the number of special characters used.	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Oracle WebLogic Server 12c v1r6 Middleware

Warning! Audit Deprecated

Audit Details

File Details

Audit Items