LockOutRealm must not be removed from Apache Tomcat.

An XCCDF Rule

Description

<VulnDiscussion>LockOutRealm prevents brute force attacks against user passwords. Removal of unneeded or nonsecure functions, ports, protocols, and services mitigate the risk of unauthorized connection of devices, unauthorized transfer of information, or other exploitation of these resources. The organization must perform a periodic scan/review of the application (as required by CCI-000384) and disable functions, ports, protocols, and services deemed to be unneeded or nonsecure.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-224782r1013858_rule
Severity: Medium
References: CCI-001762
Updated: 17 days ago

Log in to the ISEC7 SPHERE server.
Navigate to <Drive>:\Program Files\Isec7 SPHERE\Tomcat\Config
Open the server.xml file with Notepad.
Select Edit >> Find and search for LockOutRealm.
Add the following line is in the server.xml file:
<Realm className="org.apache.catalina.realm.LockOutRealm">

Restart the ISEC7 SPHERE Web service in the services.msc.

LockOutRealm must not be removed from Apache Tomcat.

Description

Remediation - Manual Procedure