Vulnerability scanning found Tomcat Default Files on TDM Portal Server

Document ID : KB000110234
Last Modified Date : 09/08/2018
Show Technical Document Details
Issue:
A vulnerability scan found the following on the Test Data Manager Portal system:
 
Medium - 12085 Apache Tomcat Default Files. See more information at link https://www.tenable.com/plugins/nessus/12085
Resolution:
  1. Stop the CA Test Data Manager Portal Service
  2. Delete the "ROOT" application directory from the Portal installation
    Default location:
    C:\Program Files\CA\CA Test Data Manager Portal\tomcat\webapps\ROOT
  3. Restart the CA Test Data Manager Portal Service
This will break the redirection to http(s)://[TDM PORTAL HOST](:port)/TestDataManager should a user navigate to http(s)://[TDM PORTAL HOST](:port)  -- without the "TestDataManager" application within the URL. The ROOT application contains an index.html that will redirect to /TestDataManager out of the box.
Additional Information:
See the Apache Tomcat Documentation for the vendors option of the default files for the ROOT application.