JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000033-AS-000024
Group -
The Java Security Manager must be enabled for the JBoss application server.
The Java Security Manager is a java class that manages the external boundary of the Java Virtual Machine (JVM) sandbox, controlling how code executing within the JVM can interact with resources out...Rule High Severity -
SRG-APP-000033-AS-000024
Group -
The JBoss server must be configured with Role Based Access Controls.
By default, the JBoss server is not configured to utilize role based access controls (RBAC). RBAC provides the capability to restrict user access to their designated management role, thereby limit...Rule High Severity -
SRG-APP-000033-AS-000024
Group -
SRG-APP-000033-AS-000024
Group -
Silent Authentication must be removed from the Default Application Security Realm.
Silent Authentication is a configuration setting that allows local OS users access to the JBoss server and a wide range of operations without specifically authenticating on an individual user basis...Rule High Severity -
SRG-APP-000033-AS-000024
Group -
Silent Authentication must be removed from the Default Management Security Realm.
Silent Authentication is a configuration setting that allows local OS users access to the JBoss server and a wide range of operations without specifically authenticating on an individual user basis...Rule High Severity -
SRG-APP-000033-AS-000024
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.