10 - Enable SSL Connector

Information

Enabling the SSL connector for the web subsystem will encrypt everything that is using that particular port

Solution

Configure the the SSL connector for the web subsystem:

<subsystem ....>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true" .... >
<ssl name="ssl" .... />
</connector>
</subsystem>

See Also

https://docs.jboss.org/author/display/AS72/Hardening+Guidelines

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Unix

Control ID: ff2014f86212deda4777477b00a4f7509f4e685fc8c8dd7730b876c8054c65a7