10.4 Force SSL when accessing the manager application

Information

Use the transport-guarantee attribute to ensure SSL protection when accessing the manager application.

Solution

Set $CATALINA_HOME/webapps/manager/WEB-INF/web.xml:
<security-constraint>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
<user-data-constraint>
</security-constraint>

See Also

https://workbench.cisecurity.org/files/266

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Unix

Control ID: c5ceebbfad72d6eebda7b0daff94f47a4cf20a12718990facfb9e264b88eefd9