The vCenter ESX Agent Manager service must be configured to limit data exposure between applications.

An XCCDF Rule

Details
Profiles

Description

If RECYCLE_FACADES is true or if a security manager is in use, a new facade object will be created for each request. This reduces the chances that a bug in an application might expose data from one request to another.

ID: SV-259011r1043180_rule
Version: VCEM-80-000057
Severity: Medium
References: CCI-001664
Updated: about 2 months ago

Remediation Templates

Navigate to and open:

/etc/vmware-eam/catalina.properties

Update or remove the following line:
org.apache.catalina.connector.RECYCLE_FACADES=true

Restart the service with the following command:

# vmon-cli --restart eam

The vCenter ESX Agent Manager service must be configured to limit data exposure between applications.

Description

Remediation Templates

A Manual Procedure