Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-18011 | ZMVZA038 | SV-33844r1_rule | Medium |
Description |
---|
Failure to use a robust ACP to control a product could potentially compromise the integrity and availability of the MVS operating system and user data. |
STIG | Date |
---|---|
z/OS BMC MAINVIEW for z/OS for ACF2 STIG | 2017-09-15 |
Check Text ( C-3632r1_chk ) |
---|
Refer to the following report produced by the ACF2 Data Collection: - ACF2CMDS.RPT(ACFGSO) Ensure that the following GSO CLASMAP record entries are defined: CLASMAP.class RESOURCE(class) RSRCTYPE(type) ENTITYLN(39) Ensure that the following GSO SAFDEF record entries are defined: INSERT SAFDEF.ssid ID(BBCS) MODE(GLOBAL)REP - RACROUTE(SUBSYS=ssid REQSTOR=-) |
Fix Text (F-198r1_fix) |
---|
The IAO will use SAF security to define and protect the Products resouce class(es). Ensure that the following GSO CLASMAP record entry(ies) is (are) defined: CLASMAP.class RESOURCE(class) RSRCTYPE(type) ENTITYLN(39) Example: SET C(GSO) LIST CLASMAP.BMCVIEW INSERT CLASMAP.BMCVIEW ENTITYLN(39) RESOURCE(BMCVIEW) RSRCTYPE(BBM) F ACF2,REFRESH(CLASMAP) Ensure that the following GSO SAFDEF record entry(ies) is (are) defined: SAFDEF.ssid ID(BBCS) MODE(GLOBAL)REP RACROUTE(SUBSYS=ssid REQSTOR=-) Example: ACF SET C(GSO) LIST SAFDEF.ssid INSERT SAFDEF.ssid ID(BBCS) MODE(GLOBAL)REP RACROUTE(SUBSYS=ssid REQSTOR=-) F ACF2,REFRESH(SAFDEF) |