Rule ID
SV-283038r1193804_rule
Version
V1R1
CCIs
Remote access to the web server is any access that communicates through an external, nonorganization-controlled network. Remote access can be used to access hosted applications or to perform management functions. A web server can be accessed remotely and must be able to enforce remote access policy requirements or work in conjunction with enterprise tools designed to enforce policy requirements. Examples of the web server enforcing a remote access policy are implementing IP filtering rules, using https instead of http for communication, implementing secure tokens, and validating users.
Verify the RDA service is disabled and controlrecoveryauth is set to use ciphertext with the following commands: cli% stoprda RDA service is already disabled. cli% controlrecoveryauth status Recovery authentication method is Ciphertext. If the message returned is not "RDA service is already disabled", this is a finding. If the message returned is not "Recovery authentication method is Ciphertext", this is a finding.
Configure the system to disable remote access: Stop the RDA service: cli% stoprda Are you sure you want to stop RDA service? select q=quit y=yes n=no: Enter "y" to confirm the action. Set the recovery authentication to ciphertext: cli% controlrecoveryauth setmethod ciphertext