VMware vRealize Automation 7.x tc Server STIG

VMware vRealize Automation 7.x tc Server Security Technical Implementation Guide

ID Vuln ID Title Cat Status
VRAU-TC-000635 V-240829 tc Server VCAC must use the setCharacterEncodingFilter filter. Cat II
VRAU-TC-000325 V-240784 tc Server VCO must not use the tomcat-users XML database for user management. Cat II
VRAU-TC-000750 V-240846 tc Server ALL log files must be moved to a permanent repository in accordance with site policy. Cat II
VRAU-TC-000310 V-240781 tc Server ALL server files must be verified for their integrity (e.g., checksums and hashes) before becoming part of the production web server. Cat II
VRAU-TC-000645 V-240831 tc Server VCO must set the welcome-file node to a default web page. Cat II
VRAU-TC-000465 V-240807 tc Server VCAC must use cryptographic modules that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance when authenticating users and processes. Cat II
VRAU-TC-000285 V-240776 tc Server VCAC log files must be protected from unauthorized modification. Cat II
VRAU-TC-000410 V-240798 tc Server VCO must not have any symbolic links in the web content directory tree. Cat II
VRAU-TC-000675 V-240836 tc Server HORIZON must have the debug option turned off. Cat II
VRAU-TC-000050 V-240734 tc Server HORIZON must perform server-side session management. Cat II
VRAU-TC-000480 V-240809 tc Server VCO accounts accessing the directory tree, the shell, or other operating system functions and utilities must be administrative accounts. Cat I
VRAU-TC-000440 V-240803 tc Server VCAC must encrypt passwords during transmission. Cat II
VRAU-TC-000905 V-240873 tc Server VCO must set the secure flag for cookies. Cat II
VRAU-TC-000395 V-240796 tc Server VCO must be configured with memory leak protection. Cat II
VRAU-TC-000175 V-240755 tc Server HORIZON must produce log records containing sufficient information to establish where within the web server the events occurred. Cat II


Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.

Version Changes

If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.