|
Name |
Hercules
3.5 Security Configuration Guide |
|
Version |
Version
1.0 |
|
Status |
Candidate |
| Creation
Date |
February
2005 |
| Revision
Date |
February
2005 |
| Product
Category |
Vulnerability
Management Software |
| Vendor |
Citadel
Security Software |
| Product |
Hercules
3.5 |
| Product
Version |
Hercules
3.5 |
| Product
Role |
Web
Application Server |
|
Checklist
Summary |
The
Hercules Security Configuration Guide provides
procedures for securing the Hercules Server,
Hercules Channel Server and Hercules Download
Server v3.5, after the initial installation
and configuration of the product. This guide
contains procedures for the recommended baseline
server configuration applicable to any environment
and an enhanced configuration for use in higher
security environments. |
| Known
Issues |
|
| Target
Audience |
System
Administrators familiar with Windows system
configuration, IIS configuration and Hercules
functionality. |
| Target
Operational Environment |
Hercules
Server v3.5 installed on Windows 2000 Server
or Windows Server 2003 running in an enterprise
environment. |
| Checklist
Installation Tools |
Internet
Information Services 5.0 Lockdown Tool
http://www.microsoft.com/technet/security
/tools/locktool.mspx |
| Rollback
Capability |
All
recommended settings can be rolled back individually. |
| Testing
Information |
All
recommendations included have been tested and
verified on Hercules Server v3.5 running on
either Windows 2000 Server or Windows Server
2003. |
| NIAP/CMVP
Status |
NIAP
/ CC EAL3 certified using this checklist. |
| Regulatory
Compliance |
N/A |
Comments,
Warnings, Disclaimer, Miscellaneous
|
|
| Disclaimer |
|
| Product
Support |
Citadel
Security Software, Inc. has defined and tested
this baseline configuration template with Hercules
3.5. Citadel will provide technical support
for Hercules 3.5 product operation to customers
who have a current support agreement in place
and who have implemented or are considering
implementing this baseline configuration. Please
refer to your support agreement for specific
details on how to contact Citadel Security Software,
Inc. technical support department. |
| Submitting
Organization/Authors |
Citadel
Security Software |
| Point
of Contact |
Citadel
Customer Support
support@citadel.com
(888) 924-8233 |
| Sponsor |
|
| Licensing |
N/A |
| Checklist
Homepage |
|
| Download
Package |
350SecurityGuide.pdf |
| Integrity |
SHA1
(350SecurityGuide.pdf) = e6eb9e2deba85b10f17e3199505d1166f3f54c59
SHA256 (350SecurityGuide.pdf) =
0dd23571569a6632ddddb87c00aadee461608b5
13d97473308cf1f986f3ae028 |
| Change
History |
Version
1.0 - Initial Release
|
| Dependency/Requirement |
|
| References |
National
Security Agency Recommendation Guides
http://www.nsa.gov/snac/
Windows 2000 Common Criteria Security Configuration
Guide
http://www.microsoft.com/technet/security/
topics/issues/w2kccscg/default.mspx
Windows Server 2003 Security Guide
http://www.microsoft.com/technet/security/
prodtech/win2003/default.mspx
Internet Information Services 5.0 Lockdown
Tool
http://www.microsoft.com/technet/security/
tools/locktool.mspx
Guide to Secure Configuration and Administration
of Microsoft IIS 5.0
http://nsa2.www.conxion.com/win2k/
guides/w2k-14.pdf
SSL and Certificates
http://www.microsoft.com/technet/security/
topics/crypto/certs.mspx
Guide to Secure Configuration and Administration
of Windows 2000 Certificate Services
http://nsa2.www.conxion.com/win2k/guides/w2k-12.pdf
How to Set Up SSL on a Web Server
http://msdn.microsoft.com/library/default.asp?url=/
library/en-us/dnnetsec/html/SecNetHT16.asp
Client Certificates
http://msdn.microsoft.com/library/default.asp?url=/
library/en-us/dnnetsec/html/SecNetHT17.asp
Step-by-Step Guide to Setting Up a Certification
Authority
http://www.microsoft.com/windows2000/
techinfo/planning/security/casetupsteps.asp
Microsoft Certificate Services Using Windows
Server 2003
http://www.microsoft.com/resources/
documentation/WindowsServ/2003/standard/
proddocs/en-us/Default.asp?url=/
resources/documentation/windowsserv/2003/
standard/proddocs/en-us/sag_cs_topnode.asp
How to Configure System Failure and Recovery
Options in Windows
http://support.microsoft.com/
default.aspx?scid=kb;en-us;307973
|
| NIST
Identifier |
1004 |
