Check: SRG-APP-000435-AS-000069
Application Server SRG:
SRG-APP-000435-AS-000069
(in versions v4 r2 through v2 r2)
Title
The application server, when a MAC I system, must be in a high-availability (HA) cluster. (Cat II impact)
Discussion
A MAC I system is a system that handles data vital to the organization's operational readiness or effectiveness of deployed or contingency forces. A MAC I system must maintain the highest level of integrity and availability. By HA clustering the application server, the hosted application and data are given a platform that is load-balanced and provided high-availability.
Check Content
If the application server is not a MAC I system, this requirement is NA. Review the application server documentation and configuration to determine if the application server is part of an HA cluster. If the application server is not part of an HA cluster, this is a finding.
Fix Text
If the application server is not a MAC I system, this requirement is NA. Configure the application server to be part of an HA cluster.
Additional Identifiers
Rule ID: SV-204814r961620_rule
Vulnerability ID: V-204814
Group Title: SRG-APP-000435
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-002385 |
Protect against or limit the effects of organization-defined types of denial-of-service events. |
Controls
| Number | Title |
|---|---|
| SC-5 |
Denial of Service Protection |