Detections
Analytics

TNS IBM WebSphere Application Server 9 Windows Best Practices

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: TNS IBM WebSphere Application Server 9 Windows Best Practices

Updated: 1/5/2022

Authority: TNS

Plugin: Windows

Revision: 1.6

Estimated Item Count: 23

File Details

Filename: TNS_IBM_WebSphere_Application_Server_9_Windows.audit

Size: 38 kB

MD5: 87c8a10e2fbd2324efd96b24cf0f7b22
SHA256: f6f27dd67ee290974eae0b509886956dc53dd61844e557a2d9a6974d1eecc4c5

Audit Changelog

 
Revision 1.6

Jan 5, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
Revision 1.5

Sep 29, 2020

Miscellaneous
  • References updated.
Revision 1.4

Apr 22, 2020

Miscellaneous
  • Metadata updated.
Revision 1.3

Feb 8, 2019

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.2

Dec 13, 2018

Miscellaneous
  • References updated.
Revision 1.1

Jul 24, 2018

Functional Update
  • Deploy WebSphere Application Server on a Dedicated System
  • Ensure Administrative Security is Enabled
  • Ensure CSIv2 inbound communications transport is SSL-required
  • Ensure Diagnostic Trace Output is Disabled
  • Ensure External Authorization Provider is Enabled
  • Ensure HTTP Access Logging Service is Enabled
  • Ensure HTTP Access Logging is Enabled
  • Ensure HTTP Error Logging is Enabled
  • Ensure HTTPOnly attribute on LTPA cookies
  • Ensure Persisting Credentials is Enabled
  • Ensure Sample Applications are removed
  • Ensure Security Auditing is Enabled
  • Ensure Session Security Integration is Enabled
  • Ensure Session Timeout is 30 minutes or less
  • Ensure Standalone LDAP Registry SSL is Enabled
  • Ensure Trust Association is Enabled
  • Ensure appropriate permissions on WebSphere Installation Directory
  • Ensure appropriate permissions on WebSphere Log Directory
  • Ensure appropriate permissions on fileRegistry.xml
  • Review Groups with 'Administrator' Administrative Group Role
  • Review Installed Applications
  • Review Users with 'Administrator' Administrative User Role
  • TNS_IBM_WebSphere_Application_Server_9_Windows.audit for IBM WebSphere Application Server 9
Informational Update
  • TNS_IBM_WebSphere_Application_Server_9_Windows.audit for IBM WebSphere Application Server 9
Miscellaneous
  • Metadata updated.
  • Platform check updated.
  • References updated.