Check: CAGW-DM-000100
CA API Gateway NDM STIG:
CAGW-DM-000100
(in version v1 r1)
Title
The CA API Gateway must be installed on Red Hat Enterprise Linux (RHEL) Version 6.7 or higher. (Cat I impact)
Discussion
The API Gateway (Appliance version) depends on specific RHEL capabilities for the security, logging, and auditing subsystems. Installation on alternative or older RHEL versions may create vulnerabilities.
Check Content
Verify the CA API Gateway is installed on Red Hat Enterprise Linux (RHEL) Version 6.7 or higher. If the CA API Gateway is not installed on Red Hat Enterprise Linux (RHEL) Version 6.7 or higher, this is a finding.
Fix Text
Configure the CA API Gateway to be installed on Red Hat Enterprise Linux (RHEL) Version 6.7 or higher.
Additional Identifiers
Rule ID: SV-86143r1_rule
Vulnerability ID: V-71519
Group Title: SRG-APP-000516-NDM-000317
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |