BMC Mainview for z/OS Started task(s) must be properly defined to the Started Task Table ACID for Top Secret.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-224611	ZMVZT032	SV-224611r1146082_rule	CCI-000764	medium
Description
Access to product resources should be restricted to only those individuals responsible for the application connectivity and who have a requirement to access these resources. Improper control of product resources could potentially compromise the operating system, ACP, and customer data.
STIG			Date
z/OS BMC MAINVIEW for z/OS for TSS Security Technical Implementation Guide			2025-09-28

Related Frameworks

4 paths across 3 frameworks

NIST 800-531 mapping

IA-2

1.00

DISA · V7R2 · disa_xccdf · related
DISA · 2025-01-23 · disa_cci_list · equivalent

NIST 800-1712 mappings

3.5.1

1.00

DISA · V7R2 · disa_xccdf · related
DISA · 2025-01-23 · disa_cci_list · equivalent
NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent

3.5.2

1.00

DISA · V7R2 · disa_xccdf · related
DISA · 2025-01-23 · disa_cci_list · equivalent
NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent

CCI1 mapping

CCI-000764

1.00

DISA · V7R2 · disa_xccdf · related

Details

Check Text (C-224611r1146082_chk)

Refer to the following report produced by the TSS Data Collection: - TSSCMDS.RPT(#STC). Automated Analysis Refer to the following report produced by the TSS Data Collection: - PDI(ZMVZ0032). If the BMC Mainview for z/OS started task(s) is (are) defined in the TSS STC record, this is not a finding.

Fix Text (F-26282r1146081_fix)

The BMC Mainview for z/OS systems programmer and the ISSO will ensure that a product's started task(s) is (are) properly identified and/or defined to the system ACP. A unique ACID must be assigned for the BMC Mainview for z/OS started task(s) through a corresponding STC table entry. The following sample set of commands is shown here as a guideline: TSS ADD(STC) PROCNAME(MV$CAS) ACID(MV$CAS) TSS ADD(STC) PROCNAME(MV$MVS) ACID(MV$MVS)