3.12 - Security Interoperability Mode is not set

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Security Interoperability Mode specifies the mode of the communication channel used for XA calls between servers that participate in a global transaction. All server instances in a domain must have the same security mode setting. The default option is the most secure, since it uses the kernel identity over an admin channel if it is enabled and 'anonymous' otherwise.

Selecting either 'performance' or 'compatibility' as the Security Interoperability Mode is a security risk since a malicious user could implement a man-in-the-middle attack by affecting the outcome of transactions. The 'compatibility' setting also runs the risk of a malicious user gaining administrative control.

Solution

1. Login to the Administration Console.
2. In the Change Center, click Lock & Edit.
3. In the left pane, select the Domain name.
4. Select Security > Advanced.
5. Set 'Security Interoperability Mode' to [default].
6. If necessary, select save. To activate these changes, in the Change Center of the Administration Console, click Activate Changes.

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8

Plugin: Windows

Control ID: 64842e34d130437af093722cb0d6b14fa0d9080f1e15dd1af4b5bec9ad510df5