Revision 1.3Jul 24, 2018
Informational Update
- 1.1 - Strong Password policy should be implemented - Enforce Password History
- 1.1 - Strong Password policy should be implemented - Maximum Password Age
- 1.1 - Strong Password policy should be implemented - Minimum Password Age
- 1.2 - Default admin password should be changed
- 2.1 - Security Groups should be established
- 2.2 - Administrator Group should be set up
- 2.3 - Limit access to production WebLogic application servers
- 2.4 - Unique X.509 Mapping should be present
- 2.5 - Security roles should be used to control access
- 3.2 - Deploy the WebLogic Platform on a Dedicated System
- 3.3 - LDAP Server SSL should be enabled
- 3.5 - Secure SNMPv3 communication should be used
- 3.7 - Backup SSL Certificates, Private Keys, and Trust Keystores
Miscellaneous
- Metadata updated.
- Platform check updated.
- References updated.
Added
- TNS_Oracle_WebLogic_10_Security_Guide_Linux.audit