Disable HTTP TRACE Method for snmpcollector probe

book

Article ID: 211017

calendar_today

Updated On:

Products

CA Unified Infrastructure Management On-Premise (Nimsoft / UIM)

Issue/Introduction

Customer just done a vulnerability assessment to our environment, one of customer finding is regarding to snmpcollector probe that have http trace enabled, it marked as insecure and recommend to disable http trace.

 

Environment

UIM : 9.2.0

Component : UIM - SNMPCOLLECTOR

Resolution

== Its not possible to disable the http trace method on probe side (snmpcollector probe).

== You can only disable for Admin console URL and Configure HTTPS in Admin Console

Additional Information

For UIM 9.02:-

============

Configure HTTPS in Admin Console or UMP:-

https://techdocs.broadcom.com/us/en/ca-enterprise-software/it-operations-management/unified-infrastructure-management/9-0-2/installing/optional-post-installation-tasks/configure-https-in-admin-console-or-ump.html

For UIM 20.3:-

=============

Configure HTTPS in Admin Console or OC (Self-Signed Certificate) :-

https://techdocs.broadcom.com/us/en/ca-enterprise-software/it-operations-management/unified-infrastructure-management/20-3/installing/optional-post-installation-tasks/configure-https-in-admin-console-or-ump.html