Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
CA IDMS Security Technical Implementation Guide
SRG-APP-000080-DB-000063
IDMS must protect against the use web services that do not require a sign on when actions are performed that may be audited.
IDMS must protect against the use web services that do not require a sign on when actions are performed that may be audited.
An XCCDF Rule
Details
Profiles
Prose
IDMS must protect against the use web services that do not require a sign on when actions are performed that may be audited.
Low Severity
<VulnDiscussion>IDMS web services provide a way for web-based applications to access an IDMS database. If not secured, the Web services interface could be used to reveal or change sensitive data.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>