Oracle WebLogic Server 12c Linux v2r1 Middleware

Audit Details

Name: Oracle WebLogic Server 12c Linux v2r1 Middleware

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Unix

Revision: 1.3

Estimated Item Count: 90

File Details

Filename: DISA_STIG_Oracle_WebLogic_Server_12c_Linux_v2r1_Middleware.audit

Size: 264 kB

MD5: 987525652bdbf93c56da16ca77e19930
SHA256: ba90753e2c5bbb9e57e990d231a32c90afbd4672ee7f66e3526e85b32693bc63

Audit Items

DescriptionCategories
WBLC-01-000009 - Oracle WebLogic must utilize cryptography to protect the confidentiality of remote access management sessions - SSL Listen Port

ACCESS CONTROL

WBLC-01-000009 - Oracle WebLogic must utilize cryptography to protect the confidentiality of remote access management sessions - Unsecure Listen Port

ACCESS CONTROL

WBLC-01-000010 - Oracle WebLogic must use cryptography to protect the integrity of the remote access session - SSL Listen Port

ACCESS CONTROL

WBLC-01-000010 - Oracle WebLogic must use cryptography to protect the integrity of the remote access session - Unsecure Listen Port

ACCESS CONTROL

WBLC-01-000011 - Oracle WebLogic must employ automated mechanisms to facilitate the monitoring and control of remote access methods.

ACCESS CONTROL

WBLC-01-000013 - Oracle WebLogic must ensure remote sessions for accessing security functions and security-relevant information are audited.

ACCESS CONTROL

WBLC-01-000014 - Oracle WebLogic must support the capability to disable network protocols deemed by the organization to be non-secure except for explicitly identified components in support of specific operational requirements.

CONFIGURATION MANAGEMENT

WBLC-01-000018 - Oracle WebLogic must automatically audit account creation - Auditing Provider

ACCESS CONTROL

WBLC-01-000018 - Oracle WebLogic must automatically audit account creation - Configuration Audit Type

ACCESS CONTROL

WBLC-01-000019 - Oracle WebLogic must automatically audit account modification - Auditing Provider

ACCESS CONTROL

WBLC-01-000019 - Oracle WebLogic must automatically audit account modification - Configuration Audit Type

ACCESS CONTROL

WBLC-01-000030 - Oracle WebLogic must provide access logging that ensures users who are granted a privileged role (or roles) have their privileged activity logged.

AUDIT AND ACCOUNTABILITY

WBLC-01-000032 - Oracle WebLogic must limit the number of failed login attempts to an organization-defined number of consecutive invalid attempts that occur within an organization-defined time period.

ACCESS CONTROL

WBLC-01-000033 - Oracle WebLogic must enforce the organization-defined time period during which the limit of consecutive invalid access attempts by a user is counted.

CONFIGURATION MANAGEMENT

WBLC-01-000034 - Oracle WebLogic must automatically lock accounts when the maximum number of unsuccessful login attempts is exceeded for an organization-defined time period or until the account is unlocked by an administrator.

CONFIGURATION MANAGEMENT

WBLC-02-000062 - Oracle WebLogic must protect against an individual falsely denying having performed a particular action.

AUDIT AND ACCOUNTABILITY

WBLC-02-000065 - Oracle WebLogic must compile audit records from multiple components within the system into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance.

AUDIT AND ACCOUNTABILITY

WBLC-02-000069 - Oracle WebLogic must generate audit records for the DoD-selected list of auditable events - HTTP Access Log

AUDIT AND ACCOUNTABILITY

WBLC-02-000073 - Oracle WebLogic must produce process events and severity levels to establish what type of HTTPD-related events and severity levels occurred.

AUDIT AND ACCOUNTABILITY

WBLC-02-000074 - Oracle WebLogic must produce audit records containing sufficient information to establish what type of JVM-related events and severity levels occurred.

AUDIT AND ACCOUNTABILITY

WBLC-02-000075 - Oracle WebLogic must produce process events and security levels to establish what type of Oracle WebLogic process events and severity levels occurred.

AUDIT AND ACCOUNTABILITY

WBLC-02-000076 - Oracle WebLogic must produce audit records containing sufficient information to establish when (date and time) the events occurred.

AUDIT AND ACCOUNTABILITY

WBLC-02-000077 - Oracle WebLogic must produce audit records containing sufficient information to establish where the events occurred.

AUDIT AND ACCOUNTABILITY

WBLC-02-000078 - Oracle WebLogic must produce audit records containing sufficient information to establish the sources of the events.

AUDIT AND ACCOUNTABILITY

WBLC-02-000079 - Oracle WebLogic must produce audit records that contain sufficient information to establish the outcome (success or failure) of application server and application events.

AUDIT AND ACCOUNTABILITY

WBLC-02-000080 - Oracle WebLogic must produce audit records containing sufficient information to establish the identity of any user/subject or process associated with the event.

AUDIT AND ACCOUNTABILITY

WBLC-02-000081 - Oracle WebLogic must provide the ability to write specified audit record content to an audit log server.

AUDIT AND ACCOUNTABILITY

WBLC-02-000083 - Oracle WebLogic must provide a real-time alert when organization-defined audit failure events occur - Module-HealthState

AUDIT AND ACCOUNTABILITY

WBLC-02-000083 - Oracle WebLogic must provide a real-time alert when organization-defined audit failure events occur - SMTP Notification

AUDIT AND ACCOUNTABILITY

WBLC-02-000084 - Oracle WebLogic must alert designated individual organizational officials in the event of an audit processing failure - Module-HealthState

AUDIT AND ACCOUNTABILITY

WBLC-02-000084 - Oracle WebLogic must alert designated individual organizational officials in the event of an audit processing failure - SMTP Notification

AUDIT AND ACCOUNTABILITY

WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - Module-HealthState

AUDIT AND ACCOUNTABILITY

WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - SMTP Notification

AUDIT AND ACCOUNTABILITY

WBLC-02-000093 - Oracle WebLogic must use internal system clocks to generate time stamps for audit records.

AUDIT AND ACCOUNTABILITY

WBLC-02-000094 - Oracle WebLogic must synchronize with internal information system clocks which, in turn, are synchronized on an organization-defined frequency with an organization-defined authoritative time source.

AUDIT AND ACCOUNTABILITY

WBLC-02-000095 - Oracle WebLogic must protect audit information from any type of unauthorized read access.

AUDIT AND ACCOUNTABILITY

WBLC-02-000098 - Oracle WebLogic must protect audit tools from unauthorized access.

AUDIT AND ACCOUNTABILITY

WBLC-02-000099 - Oracle WebLogic must protect audit tools from unauthorized modification.

AUDIT AND ACCOUNTABILITY

WBLC-02-000100 - Oracle WebLogic must protect audit tools from unauthorized deletion.

AUDIT AND ACCOUNTABILITY

WBLC-03-000125 - Oracle WebLogic must limit privileges to change the software resident within software libraries (including privileged programs).

CONFIGURATION MANAGEMENT

WBLC-03-000127 - Oracle WebLogic must adhere to the principles of least functionality by providing only essential capabilities.

CONFIGURATION MANAGEMENT

WBLC-03-000128 - Oracle WebLogic must prohibit or restrict the use of unauthorized functions, ports, protocols, and/or services.

CONFIGURATION MANAGEMENT

WBLC-03-000129 - Oracle WebLogic must utilize automated mechanisms to prevent program execution on the information system.

CONFIGURATION MANAGEMENT

WBLC-05-000150 - Oracle WebLogic must uniquely identify and authenticate users (or processes acting on behalf of users).

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000153 - Oracle WebLogic must authenticate users individually prior to using a group authenticator.

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000160 - Oracle WebLogic must enforce minimum password length.

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000162 - Oracle WebLogic must enforce password complexity by the number of upper-case characters used.

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000163 - Oracle WebLogic must enforce password complexity by the number of lower-case characters used.

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000164 - Oracle WebLogic must enforce password complexity by the number of numeric characters used.

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000165 - Oracle WebLogic must enforce password complexity by the number of special characters used.

IDENTIFICATION AND AUTHENTICATION