CL/SuperSession APPCLASS member is not configured in accordance with the proper security requirements.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-224469 | ZCLSR043 | SV-224469r1041315_rule | CCI-000381 | medium |
| Description | ||||
| Product configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified, security and operational controls may be weakened. This exposure may threaten the availability of the product applications, and compromise the confidentiality of customer data. | ||||
| STIG | Date | |||
| z/OS CL/SuperSession for RACF Security Technical Implementation Guide | 2024-12-16 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-7
1.00
- DISA · 7 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.4.6
1.00
- DISA · 7 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000381
1.00
- DISA · 7 · disa_xccdf · related
Details
Check Text (C-224469r1041315_chk)
a) Review the member APPCLASS in the TLVPARM DD statement concatenation of the CL/SuperSession STC procedure. (This member is located in SYS3.OMEGAMON.qualifier.RLSPARM.)
Automated Analysis
Refer to the following report produced by the z/OS Data Collection:
- PDI(ZCLS0043)
b) If the parameters for the member APPCLASS are configured as follows, there is no finding:
VGWAPLST EXTERNAL=APPL
c) If the parameters for the member APPCLASS are not configured as specified in (b) above, this is a finding.
Fix Text (F-26134r1041314_fix)
The systems programmer and ISSO will ensure that the parameter options for member APPCLASS are coded to the below specifications.
Review the member APPCLASS in the TLVPARM DD statement concatenation of the CL/SuperSession STC procedure. (This member is located in SYS3.OMEGAMON.qualifier.RLSPARM.) Ensure all session manager security parameters and control options are in compliance according to the following:
VGWAPLST EXTERNAL=APPL