Check: SRG-APP-000356-WSR-000007
Web Server SRG:
SRG-APP-000356-WSR-000007
(in versions v3 r3 through v2 r2)
Title
A web server that is part of a web server cluster must route all remote management through a centrally managed access control point. (Cat II impact)
Discussion
A web server cluster is a group of independent web servers that are managed as a single system for higher availability, easier manageability, and greater scalability. Without having centralized control of the web server cluster, management of the cluster becomes difficult. It is critical that remote management of the cluster be done through a designated management system acting as a single access point.
Check Content
Review the web server documentation and configuration to determine if the web server is part of a cluster. If the web server is not part of a cluster, then this is NA. If the web server is part of a cluster and is not centrally managed, then this is a finding.
Fix Text
Configure the web server to be centrally managed.
Additional Identifiers
Rule ID: SV-206420r961389_rule
Vulnerability ID: V-206420
Group Title: SRG-APP-000356
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-001844 |
The information system provides centralized management and configuration of the content to be captured in audit records generated by organization-defined information system components. |
Controls
| Number | Title |
|---|---|
| AU-3(2) |
Centralized Management of Planned Audit Record Content |