UCF STIG Viewer Logo

IDMS executing in a local mode batch environment must be able to manually recover or restore database areas affected by failed transactions.


Overview

Finding ID Version Rule ID IA Controls Severity
V-251616 IDMS-DB-000440 SV-251616r807715_rule Low
Description
Local mode update jobs can either use local mode journaling or perform a backup of the database prior to executing the local mode updates. Local mode journaling could be completed if the database is too large to back up in a reasonable amount of time. To use local mode journals for manual recovery, the journals must be defined in the IDMS DMCL as a TAPE JOURNAL and a DD for the journal file must be coded in the update job step JCL. The local mode update job must include the IDMS DMCL name in the SYSIDMS parameter file as DMCL=dmcl-name. If the local mode update step fails, then a rollback step must be performed to recover the database. Without local mode journaling, the local mode batch job should include a backup of the database step, a local mode update step and another backup of the database step if the local updates step successfully complete. If the local mode update step fails, then a step to restore the database from the first backup step must be performed. Satisfies: SRG-APP-000225-DB-000153, SRG-APP-000226-DB-000147
STIG Date
CA IDMS Security Technical Implementation Guide 2022-09-07

Details

Check Text ( C-55051r807713_chk )
Check that the job or prior job contains a step to vary the areas offline to the CV and takes a backup. If not there, it is a finding.

Perform a second check to verify there is a restore step or JCL that can be used when the job fails.
Fix Text (F-55005r807714_fix)
Add a backup step/job if needed and create a restore step/job if needed.