Viewing security status of your servers

You can view the security vulnerability status of every server and deployment manager in your inventory from the Security page in the WebSphere Automation UI. For each server, the numerical risk level in the range 0 - 10 represents the highest CVSS value of its CVEs.

Before you begin

You must have a user profile with the View security data permission or the Manage security data permission. For more information, see Configuring roles and permissions.

Procedure

  1. Log in to WebSphere Automation; in the menu, click Operate > Application runtimes.
    For more information, see Accessing the WebSphere Automation UI.
  2. If necessary, open the Security page.
    Figure 1. Viewing example Security page with vulnerability status of servers
    Example Security page with vulnerability status of servers. Column headings include Risk level, Server, CVE, Hostname, Operating system, WebSphere version, Java SDK version, Fixes applied, and Topology.
    If you do not see the menu option Operate > Application Runtimes, or if you see a message that you are not authorized, then you do not have permission to access the page. For more information about permissions, see Roles and permissions. If you do not see a listing of servers, then you need to register your servers with WebSphere Automation. For instructions on registering servers, see Registering a server.
  3. Use the data to assess your exposures and plan your mitigation.
    Note the following controls:
    • Filtering options:
      Cell
      To show only the servers in a cell, check the box for that cell in the list. You can select more than one cell.
      CVE
      To show only the servers affected by a CVE, check the box for that cell in the list. You can select more than one CVE.
      WebSphere version
      To show only the servers of a specific version of WebSphere Application Server or WebSphere Application Server Liberty, check the box for that version in the list. You can select more than one version.
      Server type
      To show only single instances of WebSphere Application Server, check the Application Server box. To show only instances of WebSphere Application Server deployment manager, check the Deployment Manager box. Instances of WebSphere Application Server Liberty are not shown if either of these server types is selected.
      Operating system
      To show only servers installed on a particular operating system, check the box for that operating system in the list.
      Node Name
      To filter servers based on their node names, check the box next to the desired node name in the list. You can select more than one node name.
      Server Name
      To filter servers based on their names, check the box next to the desired server name in the list. You can select more than one server name.
      Hostname
      To filter servers based on their hostnames, check the box next to the desired hostname in the list. You can select more than one hostname.
      Risk level
      To filter servers based on the severity of the security exposure based on the CVSS values of the affecting CVEs, check the box to select the desired risk levels. You can select more than one risk level.
    • Sorting options (column headings):
      Risk level
      The severity of the security exposure with the greatest risk for each server, based on the CVSS values of the affecting CVEs. The scale is from 0 (no risk) to 10 (extreme risk). By default, the list of servers is sorted from greatest risk level to lowest.
      Server
      The name of the server. Click this column heading to toggle between grouping the servers alphanumerically by name, in reverse order, or in original (unsorted) order. You can click the name of the server to view information about the server on a dedicated page.
      Hostname
      The hostname of the server. Click this column heading to toggle between grouping the servers alphanumerically, in reverse order, or in original (unsorted) order.
      Operating system
      The particular operating system on which the server is installed.
      WebSphere version
      The version of WebSphere Application Server or WebSphere Application Server Liberty that is used by the server. Click this column to toggle between sorting the servers numerically by version number, in reverse order, or in original (unsorted) order.
      Topology
      The unique location information for the server. Click this column heading to toggle between grouping the cells alphanumerically, in reverse order, or in original (unsorted) order. Hover over the information in this column to display the installation directory.
    • Other controls:
      Download audit report
      Opens a dialog to open or save an audit report with current vulnerability assessments in comma-separated text format. For more information, see Generating an audit report with security status for all servers.
      Page controls
      You can select the number of servers to display per page, and move from page to page when the list requires more than one page.
    Note the following column headings:
    CVE
    The CVE numbers for the CVEs that are not yet fixed for this server. You can click the link with the CVE number to see more information about the CVE, including a list of registered servers that are affected by it. If more than one CVE is unresolved for the server, the additional number of CVEs is shown in parentheses. You can click this link to see the full list of CVEs.
    Java SDK Version
    The version of Java™ that is installed on the server.
    Fixes applied
    The interim fix (iFix) numbers for the interim fixes that are installed on this server. If more than one interim fix is installed on the server, the total number of interim fixes is shown in parentheses. You can click this link to see the full list of interim fixes that are installed on this server.