WBSP-AS-000120 – The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes – depth

Details

Without enabling repository checkpoints, you will not be able to determine the history of changes to WebSphere configuration files, and who made those changes.

Solution

From administrative console click System administration >> Extended repository service >> Enable automatic repository checkpoints.

Enter a ‘checkpoint depth value’ according to the security plan.

Restart the DMGR and all the JVMs.

Supportive Information

The following resource is also helpful.

http://iasecontent.disa.mil/stigs/zip/U_IBM_WebSphere_Traditional_V9-x_V1R1_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.

References

800-53|AC-17(1)
CAT|II
CCI|CCI-000067
Rule-ID|SV-95911r1_rule
STIG-ID|WBSP-AS-000120
Vuln-ID|V-81197

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles