Red Hat Ansible Automation Controller Application Server Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Automation Controller must limit the number of concurrent sessions to an organization-defined number for all accounts and/or account types.
Application management includes the ability to control the number of sessions that utilize an application by all accounts and/or account types. Limiting the number of allowed sessions is helpful in...Rule Medium Severity -
Automation Controller must implement cryptography mechanisms to protect the integrity of information.
Encryption is critical for protection of remote access sessions. If encryption is not being used for integrity, malicious users may gain the ability to modify Automation Controller configuration. T...Rule High Severity -
Automation Controller must use external log providers that can collect user activity logs in independent, protected repositories to prevent modification or repudiation.
Automation Controller must be configured to use external logging to compile log records from multiple components within the server. The events occurring must be time-correlated in order to conduct ...Rule Medium Severity -
Automation Controller must be configured to use an enterprise user management system.
Unauthenticated application servers render the organization subject to exploitation. Therefore, application servers must be uniquely identified and authenticated to prevent unauthorized access. Sa...Rule Medium Severity -
Automation Controller must use cryptographic mechanisms to protect the integrity of log tools.
Protecting the integrity of the tools used for logging purposes is a critical step in ensuring the integrity of log data. Log data includes all information (e.g., log records, log settings, and log...Rule Medium Severity -
SRG-APP-000001-AS-000001
Group -
Automation Controller must install security-relevant software updates within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, and STIGs).
Security relevant software updates must be installed within the timeframes directed by an authoritative source in order to maintain the integrity and confidentiality of the system and its organizat...Rule Medium Severity -
SRG-APP-000014-AS-000009
Group -
Automation Controller must use encryption strength in accordance with the categorization of the management data during remote access management sessions.
Remote management access is accomplished by leveraging common communication protocols and establishing a remote connection to the application server via a network for the purposes of managing Autom...Rule Medium Severity -
SRG-APP-000015-AS-000010
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.