IDMS must protect against the use web services that do not require a sign on when actions are performed that may be audited.

An XCCDF Rule

Details
Profiles

Description

IDMS web services provide a way for web-based applications to access an IDMS database. If not secured, the Web services interface could be used to reveal or change sensitive data.

ID: SV-251598r960864_rule
Version: IDMS-DB-000180
Severity: Low
References: CCI-000166
Updated: 5 days ago

Remediation Templates

On the IDMS CV system where CA IDMS Web Services executes, enter "WEBC REQUIRE SIGNON=YES".

IDMS must protect against the use web services that do not require a sign on when actions are performed that may be audited.

Description

Remediation Templates

A Manual Procedure