https://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerabilityen-USTelligent Community 12https://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerabilityWed, 24 Jan 2024 22:59:56 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:2def7616-82b6-4d97-bc4a-d163058a0baapauline.delacruzhttps://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability#commentsCurrent Revision posted to Appian Knowledge Base by pauline.delacruz on 1/24/2024 10:59:56 PM<br /> <h2>Symptoms</h2> <p>Following a network vulnerability/security scan, reports indicate a violation on port 1099. The scan shows a&nbsp;remote Java JMX agent is configured without SSL client and password authentication.</p> <h2>Cause</h2> <p>The process listening on port 1099 is started by ActiveMQ to run the JMS broker. This process is started by default when Tomcat is started and exposes a JMX listener for monitoring/administration on port 1099 at startup.</p> <h2>Action</h2> <ol> <li>Shut down the application server.</li> <li>Add the following line to&nbsp;<strong>custom.properties</strong> file in <code><tt>&lt;APPIAN_HOME&gt;/conf:</tt></code> <pre class="code panel">conf.jms.embeddedBrokerUrl=broker:(tcp:<span class="code-comment">//0.0.0.0:61616)?useJmx=<span class="code-keyword">false</span></span></pre> </li> <li>Start the application server.</li> </ol> <h2>Affected Versions</h2> <p>This article applies to all versions earlier than 20.4 which use Tomcat as an application server.</p> <p>Last Reviewed: January 2024</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: Tomcat, Security, application server, infrastructure, network</div> https://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability/revision/4Thu, 25 Jul 2019 00:33:48 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:2def7616-82b6-4d97-bc4a-d163058a0baaParmida Borhanihttps://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability#commentsRevision 4 posted to Appian Knowledge Base by Parmida Borhani on 7/25/2019 12:33:48 AM<br /> <h2>Symptoms</h2> <p>Following a network vulnerability/security scan, reports indicate a violation on port 1099. The scan shows a&nbsp;remote Java JMX agent is configured without SSL client and password authentication.</p> <h2>Cause</h2> <p>The process listening on port 1099 is started by ActiveMQ to run the JMS broker. This process is started by default when Tomcat is started and exposes a JMX listener for monitoring/administration on port 1099 at startup.</p> <h2>Action</h2> <ol> <li>Shut down the application server.</li> <li>Add the following line to&nbsp;<strong>custom.properties</strong> file in <code><tt>&lt;APPIAN_HOME&gt;/conf:</tt></code> <pre class="code panel">conf.jms.embeddedBrokerUrl=broker:(tcp:<span class="code-comment">//0.0.0.0:61616)?useJmx=<span class="code-keyword">false</span></span></pre> </li> <li>Start the application server.</li> </ol> <h2>Affected Versions</h2> <p>This article applies to all versions of Appian using Tomcat as an application server.</p> <p>Last Reviewed: July 2019</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: Tomcat, Security, application server, infrastructure, network</div> https://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability/revision/3Wed, 24 Jul 2019 14:43:53 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:2def7616-82b6-4d97-bc4a-d163058a0baaJames Leehttps://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability#commentsRevision 3 posted to Appian Knowledge Base by James Lee on 7/24/2019 2:43:53 PM<br /> <h2>Symptoms</h2> <p>Following a network vulnerability/security scan, reports indicate a violation on port 1099. The scan shows a&nbsp;remote Java JMX agent is configured without SSL client and password authentication.</p> <h2>Cause</h2> <p>The process listening on port 1099 is started by ActiveMQ to run the JMS broker. This process is started by default when Tomcat is started and exposes a JMX listener for monitoring/administration on port 1099 at startup.</p> <h2>Action</h2> <ol> <li>Shut down the application server.</li> <li>Add the following line to&nbsp;<strong>custom.properties</strong> file in <code><tt>&lt;APPIAN_HOME&gt;/conf:</tt></code> <pre class="code panel">conf.jms.embeddedBrokerUrl=broker:(tcp:<span class="code-comment">//0.0.0.0:61616)?useJmx=<span class="code-keyword">false</span></span></pre> </li> <li>Start the application server.</li> </ol> <h2>Affected Versions</h2> <p>This article applies to all versions of Appian using Tomcat as an application server.</p> <p>Last Reviewed: July 2019</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: Tomcat, Security, application server, infrastructure, network</div> https://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability/revision/2Tue, 23 Jul 2019 21:54:30 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:2def7616-82b6-4d97-bc4a-d163058a0baaJames Leehttps://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability#commentsRevision 2 posted to Appian Knowledge Base by James Lee on 7/23/2019 9:54:30 PM<br /> <h2>Symptoms</h2> <p>Following a network vulnerability/security scan, reports indicate a violation on port 1099. The scan shows a&nbsp;remote Java JMX agent is configured without SSL client and password authentication.</p> <h2>Cause</h2> <p>The process listening on port 1099 is started by ActiveMQ to run the JMS broker. This process is started by default when Tomcat is started and exposes a JMX listener for monitoring/administration on port 1099 at startup.</p> <h2>Action</h2> <ol> <li>Shut down the application server.</li> <li>Add the following lines to&nbsp;<strong>custom.properties</strong> file in <tt>&lt;APPIAN_HOME&gt;/conf:</tt> <pre class="code panel">conf.jms.embeddedBrokerUrl=broker:(tcp:<span class="code-comment">//0.0.0.0:61616)?useJmx=<span class="code-keyword">false</span></span></pre> </li> <li>Restart the application server.</li> </ol> <p>&nbsp;</p> <h2>Affected Versions</h2> <p>This article applies to all versions of Appian using Tomcat as an application server.</p> <p>Last Reviewed: July 2019</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: Security, application server, infrastructure</div> https://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability/revision/1Tue, 23 Jul 2019 21:12:34 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:2def7616-82b6-4d97-bc4a-d163058a0baaJames Leehttps://community.appian.com/support/w/kb/1495/kb-1970-port-1099-network-security-vulnerability#commentsRevision 1 posted to Appian Knowledge Base by James Lee on 7/23/2019 9:12:34 PM<br /> <h2>Symptoms</h2> <p>Following a network vulnerability/security scan, reports indicate a violation on port 1099. Scan shows a&nbsp;remote Java JMX agent is configured without SSL client and password authentication.</p> <h2>Cause</h2> <p>The process listening on port 1099 is started by ActiveMQ to run the JMS broker. This process is started by default when we start Tomcat, and exposes a JMX listener for monitoring/administration on port 1099 at startup.</p> <h2>Action</h2> <ol> <li>Shut down the Appian application server.</li> <li>Open the <strong>custom.properties</strong> file in <tt>&lt;APPIAN_HOME&gt;/conf</tt></li> <li>Add the following line: <pre class="code panel">conf.jms.embeddedBrokerUrl=broker:(tcp:<span class="code-comment">//0.0.0.0:61616)?useJmx=<span class="code-keyword">false</span></span></pre> </li> <li>Restart the application server.</li> </ol> <p>&nbsp;</p> <h2>Affected Versions</h2> <ul> <li>This article applies to all versions of Appian using tomcat as an application server.</li> </ul> <p>Last Reviewed: Month YYYY</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: Security, application server, infrastructure</div>