UCF STIG Viewer Logo

All installation-delivered IDMS Database-Administrator-level programs must be properly secured.


Overview

Finding ID Version Rule ID IA Controls Severity
V-251592 IDMS-DB-000120 SV-251592r807643_rule Medium
Description
DBA-level programs that are not secured may allow unauthorized users to use them to access and manipulate various resources within the DBMS. Satisfies: SRG-APP-000033-DB-000084, SRG-APP-000211-DB-000122
STIG Date
CA IDMS Security Technical Implementation Guide 2022-09-07

Details

Check Text ( C-55027r807641_chk )
The following are DBA-level batch programs and are executed using JCL rather than the CV. As batch programs, they need to be secured for DBAs in the external security manager (ESM) (included in DCADMIN, DBADMIN level security) rather than through the SRTT.

Validate the following suggested DBA-level programs are secured by the ESM.
ADSOBSYS
ADSOBTAT
IDMSCHEM
IDMSDBN1
IDMSDBN2
IDMSDDDL
IDMSPASS
IDMSRSTC
IDMSUBSC
RHDCOMVS

Contact the security office to confirm that the programs in this list are secured. If not, this is a finding.
Fix Text (F-54981r807642_fix)
Contact the security office to confirm that the programs in this list are secured via the ESM and assigned to the appropriate users. Each program in the list must be secured.