Skip to content

CA API Gateway NDM Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • The CA API Gateway must enforce a minimum 15-character password length.

    <VulnDiscussion>Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute...
    Rule Medium Severity
  • SRG-APP-000170-NDM-000329

    <GroupDescription></GroupDescription>
    Group
  • SRG-APP-000516-NDM-000336

    <GroupDescription></GroupDescription>
    Group
  • The CA API Gateway must off-load audit records onto a different system or media than the system being audited.

    &lt;VulnDiscussion&gt;Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common...
    Rule Low Severity
  • SRG-APP-000516-NDM-000334

    <GroupDescription></GroupDescription>
    Group
  • SRG-APP-000164-NDM-000252

    <GroupDescription></GroupDescription>
    Group
  • The CA API Gateway must employ RADIUS + LDAPS or LDAPS to centrally manage authentication settings.

    &lt;VulnDiscussion&gt;The use of authentication servers or other centralized management servers for providing centralized authentication services i...
    Rule Medium Severity
  • SRG-APP-000109-NDM-000233

    <GroupDescription></GroupDescription>
    Group
  • The CA API Gateway must shut down by default upon audit failure (unless availability is an overriding concern).

    &lt;VulnDiscussion&gt;It is critical that when the network device is at risk of failing to process audit logs as required, it take action to mitiga...
    Rule Medium Severity
  • SRG-APP-000125-NDM-000241

    <GroupDescription></GroupDescription>
    Group

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules