Details

Web servers provide numerous processes, features, and functionalities that use TCP/IP ports. Some of these processes may be deemed unnecessary or too unsecure to run on a production system. The ports that the Performance Charts listens on are configured in the ‘catalina.properties’ file and must be verified as accurate to their shipping state.

Solution

Navigate to and open /etc/vmware-eam/catalina.properties.

Navigate to the ports specification section.

Add or modify the following lines:

bio.http.port=13080
bio.https.port=8443

Supportive Information

The following resource is also helpful.

• https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_6-7_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

• 800-53|CM-7(1)(b)
• CAT|II
• CCI|CCI-001762
• Rule-ID|SV-239429r675010_rule
• STIG-ID|VCPF-67-000028
• Vuln-ID|V-239429

Source

• Tenable.com/audits