5.15 OAS - 'SSL Client DN Match - Set tnsnames file to include ssl_server_cert_dn parameter with the DN of the certificate'

Information

This will reduce the possibility of certificate masquerading which can lead to man in the middle attacks
and compromise the security provided by SSL.
Level 2, Scorable

See Also

https://workbench.cisecurity.org/files/580

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CSCv6|3.1

Plugin: Windows

Control ID: 479ab959a192054302e8ca5e86dd1ba200c430af484faa4c7a9a09de4b0475a0