Back

Configure Oracle WebLogic Server to Organizational Standards.


CONTROL ID
08990
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain system hardening procedures., CC ID: 12001

This Control has the following implementation support Control(s):
  • Configure the "Complete Message Timeout" setting to organizational standards., CC ID: 09818
  • Configure the "FIPS- compliant cryptographic module" setting to organizational standards., CC ID: 09819
  • Configure the "Allow Unencrypted Null Cipher" setting to organizational standards., CC ID: 09820
  • Configure the "Maximum Message Size" setting to organizational standards., CC ID: 09821
  • Configure the "Security Interoperability Mode" setting to organizational standards., CC ID: 09822
  • Configure the "Severity field" setting to organizational standards., CC ID: 09824
  • Configure the "servlet.HttpServletResponse" setting for "Active Context Handler" to organizational standards., CC ID: 09825
  • Configure the "wli.Message" setting for "Active Context Handler" to organizational standards., CC ID: 09826
  • Configure the "channel.Port" setting for "Active Context Handler" to organizational standards., CC ID: 09827
  • Configure the "channel.PublicPort" setting for "Active Context Handler" to organizational standards., CC ID: 09828
  • Configure the "channel.RemotePort" setting for "Active Context Handler" to organizational standards., CC ID: 09829
  • Configure the "channel.Protocol" setting for "Active Context Handler" to organizational standards., CC ID: 09830
  • Configure the "channel.Address" setting for "Active Context Handler" to organizational standards., CC ID: 09831
  • Configure the "channel.PublicAddress" setting for "Active Context Handler" to organizational standards., CC ID: 09832
  • Configure the "channel.RemoteAddress" setting for "Active Context Handler" to organizational standards., CC ID: 09833
  • Configure the "channel.ChannelName" setting for "Active Context Handler" to organizational standards., CC ID: 09834
  • Configure the "channel.Secure" setting for "Active Context Handler" to organizational standards., CC ID: 09835
  • Configure the "ejb20.Parameter" setting for "Active Context Handler" to organizational standards, CC ID: 09836
  • Configure the "wsee.SOAPmessage" setting for "Active Context Handler" to organizational standards., CC ID: 09837
  • Configure the "entitlement.EAuxilaryID" setting for "Active Context Handler" to organizational standards., CC ID: 09838
  • Configure the "security.ChainPrevalidatedBySSL" setting for "Active Context Handler" to organizational standards., CC ID: 09839
  • Configure the "xml.SecurityToken" setting for "Active Context Handler" to organizational standards., CC ID: 09840
  • Configure the "webservice.Integrity" setting for "Active Context Handler" to organizational standards., CC ID: 09841
  • Configure the "saml.SSLClientCertificateChain" setting for "Active Context Handler" to organizational standards., CC ID: 09842
  • Configure the "saml.MessageSignerCerficate" setting for "Active Context Handler" to organizational standards., CC ID: 09843
  • Configure the "saml.subject.ConfirmationMethod" setting for "Active Context Handler" to organizational standards., CC ID: 09844
  • Configure the "saml.subject.dom.KeyInfo" setting for "Active Context Handler" to organizational standards., CC ID: 09845
  • Configure the "jmx.ObjectName" setting for "Active Context Handler" to organizational standards., CC ID: 09846
  • Configure the "jmx.ShortName" setting for "Active Context Handler" to organizational standards., CC ID: 09847
  • Configure the "jmx.Parameters" setting for "Active Context Handler" to organizational standards., CC ID: 09848
  • Configure the "jmx.Signature" setting for "Active Context Handler" to organizational standards., CC ID: 09849
  • Configure the "jmx.AuditProtectedArgInfo" setting for "Active Context Handler" to organizational standards., CC ID: 09850
  • Configure the "jmx.OldAttributeValue" setting for "Active Context Handler" to organizational standards., CC ID: 09851
  • Configure the "Reject if Password Contains the User Name" setting to organizational standards., CC ID: 09852
  • Configure the "Reject if Password Contains the User Name Reversed" setting to organizational standards., CC ID: 09853
  • Configure the "maximum instances of any character field" setting to organizational standards., CC ID: 09854
  • Configure the "maximum consecutive characters field" setting to organizational standards., CC ID: 09855
  • Configure the "minimum number of alphabetic characters field" setting to organizational standards., CC ID: 09856
  • Configure the "minimum number of numeric characters field" setting to organizational standards., CC ID: 09857
  • Configure the "minimum number of non-alphanumeric characters field" setting to organizational standards., CC ID: 09858
  • Configure the "Lockout Threshold" setting in the "Security Realm" to organizational standards., CC ID: 09861
  • Configure the "Lockout Duration" setting in the "Security Realm" to organizational standards., CC ID: 09862
  • Configure the "Lockout Reset Duration" setting in the "Security Realm" to organizational standards., CC ID: 09863
  • Configure the "Require Unanimous Permit" setting to organizational standards., CC ID: 09864
  • Configure the "Host Name Verification" setting on the "Administration Server" to organizational standards., CC ID: 09865
  • Configure the "Minimum Number of Non-Alphabetic Characters" setting to organizational standards., CC ID: 09866
  • Configure the "SSL Enabled" setting for "LDAP Server connections" to organizational standards., CC ID: 09867
  • Configure the "Host Name Verification" setting to organizational standards., CC ID: 09868
  • Configure the "Domain Credentials" setting to organizational standards., CC ID: 09869
  • Configure the "Configuration Archive Enabled" setting to organizational standards., CC ID: 09870
  • Configure the "Archive Configuration Count" setting to organizational standards., CC ID: 09871
  • Configure the "Default Administrator field" setting to organizational standards., CC ID: 09872
  • Configure the "SSL Listen Port" setting to organizational standards., CC ID: 09873
  • Configure the "Administration Console Session Timeout field" setting to organizational standards., CC ID: 09874
  • Configure the "Production Mode" setting to organizational standards., CC ID: 09875
  • Configure the "WebLogic Auditing provider" setting to organizational standards., CC ID: 09876
  • Configure the "Invocation Timeout Seconds" setting to organizational standards., CC ID: 09877
  • Configure the "Anonymous Admin Lookup Enabled" setting to organizational standards., CC ID: 09878
  • Configure the "Web App Files Case Insensitive" setting to organizational standards., CC ID: 09879
  • Configure the "Enable Administration Port" setting to organizational standards., CC ID: 09880
  • Configure the "SSL Rejection Logging Enabled" setting to organizational standards., CC ID: 09881
  • Configure the "Export Key Lifespan" setting to organizational standards., CC ID: 09882
  • Configure the "Client Cert Proxy Enabled" setting for the "Administration Server" to organizational standards., CC ID: 09883
  • Configure the "Client Cert Proxy Enabled" setting for the "managed server" to organizational standards., CC ID: 09884
  • Configure the "Frontend Host" setting to organizational standards., CC ID: 09885
  • Configure the "Check Roles and Policies" setting to organizational standards., CC ID: 09886
  • Configure the "Security Model Default" setting to organizational standards., CC ID: 09887
  • Configure the "When Deploying Web Applications or EJBS" setting to organizational standards., CC ID: 09888
  • Configure the "Configuration Audit Type field" setting to organizational standards., CC ID: 09889
  • Configure the "EditMBeanServerEnabled" setting for the "Administration Server" to organizational standards., CC ID: 09890
  • Configure the "two-way SSL" setting to organizational standards., CC ID: 09891
  • Configure the "Embedded LDAP Timeout" setting to organizational standards., CC ID: 09892
  • Configure the "Anonymous Bind Allowed" setting to organizational standards., CC ID: 09893
  • Configure the "Post Timeout field" setting to organizational standards., CC ID: 09894
  • Configure the "HTTP Duration" setting to organizational standards., CC ID: 09895
  • Configure the "HTTPS Duration" setting to organizational standards., CC ID: 09896
  • Configure the "HTTP Maximum Message Size" setting to organizational standards., CC ID: 09897
  • Configure the "Connection Filter" setting for the "managed server" to organizational standards., CC ID: 09898
  • Configure the "connection filter" setting to organizational standards., CC ID: 09899
  • Configure the "Client Cert Proxy Enabled" setting to organizational standards., CC ID: 09904
  • Configure the "Auth Cookie Enabled" setting to organizational standards., CC ID: 09905
  • Configure the "Maximum Open Sockets" setting on the "Administration server" to organizational standards., CC ID: 09906
  • Configure the "Complete Message Timeout" setting for "each custom channel" to organizational standards., CC ID: 09908
  • Configure the "Idle Connection Timeout" setting for "each custom channel" to organizational standards., CC ID: 09909
  • Configure the "Maximum Message Size" setting for "each custom channel" to organizational standards., CC ID: 09910
  • Configure the "Node Manager Listen Address" setting to organizational standards., CC ID: 09911
  • Configure the "Node Manager Type" setting to organizational standards., CC ID: 09912
  • Configure the "Policy Selection Preference" setting to organizational standards., CC ID: 09913
  • Configure the "Maximum Open Sockets" setting for "all Managed Servers" to organizational standards., CC ID: 09914
  • Configure the "Enforce Constraints" setting for "digital certificates" to organizational standards., CC ID: 09915
  • Configure the "Keystores field" setting to organizational standards., CC ID: 09916
  • Configure the "HTTP Access Log File" setting to organizational standards., CC ID: 09917
  • Configure the "Custom Hostname Verifier field" setting to organizational standards., CC ID: 09918
  • Configure the "SSL port enabled" setting to organizational standards., CC ID: 09919
  • Configure the "Listen Port Enabled" setting to organizational standards., CC ID: 09920


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



This control is an implied control and is included to maintain the legal hierarchy for your selected controls.