z/OS CL/SuperSession for ACF2 Security Technical Implementation Guide
Overview
| Version | Date | Finding Count (7) | Downloads | ||
| 7 | 2024-12-16 | CAT I (High): 0 | CAT II (Medium): 7 | CAT III (Low): 0 | |
| STIG Description |
| This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. |
Findings - MAC III - Administrative Sensitive
| Finding ID | Severity | Title | Description |
|---|---|---|---|
| V-224282 | CL/SuperSession profile options are set improperly. | Product configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified,... | |
| V-224283 | CL/SuperSession must be properly configured to generate SMF records for audit trail and accounting reports. | Product configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified,... | |
| V-224284 | CL/SuperSession Install data sets must be properly protected. | CL/SuperSession Install data sets provide the capability to use privileged functions and/or have access to sensitive data. Failure to properly restric... | |
| V-224285 | CL/SuperSession STC data sets must be properly protected. | CL/SuperSession STC data sets provide the capability to use privileged functions and/or have access to sensitive data. Failure to properly restrict ac... | |
| V-224286 | CL/SuperSession Started Task name is not properly identified / defined to the system ACP. | CL/SuperSession requires a started task that will be restricted to certain resources, datasets and other system functions. By defining the started tas... | |
| V-224287 | CL/SuperSession KLVINNAM member must be configured in accordance with security requirements. | CL/SuperSession configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly sp... | |
| V-224288 | CL/SuperSession APPCLASS member is not configured in accordance with the proper security requirements. | CL/SuperSession configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly sp... |