CA VM:Secure product DASD CONFIG file must be restricted to appropriate personnel.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-237958 | IBMZ-VM-001230 | SV-237958r859050_rule | CCI-000366 | medium |
| Description | ||||
| Configuring the operating system to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements. | ||||
| STIG | Date | |||
| IBM zVM Using CA VM:Secure Security Technical Implementation Guide | 2022-08-31 | |||
Details
Check Text (C-237958r859050_chk)
Query the CA VM:Secure product rules.
If there are product rules granting access to the disk on which the "DASD CONFIG" file resides for system administrators or DASD administrators only, this is not a finding.
Fix Text (F-41127r859049_fix)
Create rules in the CA VM:Secure product Rules Facility that restricts access to the disk where the "DASD CONFIG" file resides to system administrators or DASD administrators only.