6.2 Ensure SSLEnabled is set to True for Sensitive Connectors(verify SSLEnabled is set to true)

Information

The SSLEnabled setting determines if SSL is enabled for a specific Connector. It is recommended that SSL be utilized for any Connector that sends or receives sensitive information, such as authentication credentials or personal information.

Solution

In server.xml, set the SSLEnabled attribute to true for each Connector that sends or receives sensitive information.

See Also

https://workbench.cisecurity.org/files/266

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Unix

Control ID: 50c4936c1fc660df1584e9ba903fea0276568824f28acec680e9021e198b0bf3