2.25 Ensure Configure SecurityInterceptor logging level is set correctly - 'org.jboss.ejb.plugins.SecurityInterceptor = true'

Information

Production environments of JBoss require enhanced auditing on the SecurityInterceptor class.

Solution

Ensure a category is defined for SecurityInterceptor class with a priority of TRACE within JBOSS_HOME/server/@PROFILE@/conf/jboss-log4j.xml.

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12, CAT|II

Plugin: Unix

Control ID: eaeee760da14b6a029742982dd5d37efe076d7b30b36de63c953b5a71291510a