Create an Apache Web Server record in order to authenticate to an Apache web server running on a Unix host and Windows host, and scan it for compliance. The same record may include details for both Windows and Unix installations. So, you'll also need a Unix record for the unix host running the web server and a Windows records for the Windows host running the web server.
This record type is only available in accounts with PC or SCA and is only supported for compliance scans.
Did you know? You can allow the system to create Apache Web Server authentication records for auto discovered instances and scan them.
For the most current list of supported authentication technologies and the versions that have been certified for VM and PC by record type, please refer to the following article:
Authentication Technologies Matrix
- Go to Scans > Authentication.
- Check that you already have a record defined for each host running a Apache Web Server. For Windows hosts, a Windows record is required. For Unix hosts, a Unix record is required.
- Create an Apache Web Server record for the same host. Go to New > Applications > Apache Web Server.
Note: If the Network Support feature is enabled, then the Windows/Unix record must have the same network selected as the Apache web server record.
Tell me about user permissionsTell me about user permissions
Managers can add authentication records.
Unit Managers must be granted these permissions:
- Manage PC module / Manage SCA module
- Create/edit authentication records/vaults
We'll authenticate to each target host using the credentials provided in the Unix record or Windows Record. If the host is running IBM HTTP Server, VMware vFabric Web Server or Pivotal Web Server, then we'll check to see if an Apache Web Server record exists. If yes, we'll use credentials from the Unix record/Windows record to authenticate to the Unix/Windows system, access the application server configuration, and scan it for compliance.
Yes, you can use the same record if Apache is installed in the same location on the hosts. The path to the Apache configuration file and to the Apache control command has to be the same for each target host specified in the IPs section of the record. If it's different then you need to create a separate record.
You can create multiple Apache Web Server authentication records with the same IP address defined as long as the values for Apache Configuration File and Apache Control Command are unique. Note that the paths in Windows are case-sensitive.
Tell me about reporting of Apache instancesTell me about reporting of Apache instances
Your PC reports identify compliance evaluation findings for Apache instances. Each instance string identifies the configuration file path.
Avoid duplicate instances reported - The way we report the instance changed in version 7.13 to include the configuration file path. We recommend you purge your hosts running Apache before you scan them with this version to avoid having duplicate instances reported - the old instance format and the new instance format.