STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:SV-223458r533198_rule
V-223458
SRG-OS-000324-GPOS-00125
ACF2-ES-000380
CAT II
10
Obtain the high level indexes to backup data sets names define their access to be restricted by the System's ESM to System Programmers and batch jobs that perform the backups. Define READ Access to system backup data sets to be limited to auditors and others approved by the ISSM.
Collect from the storage management group the identification of the DASD backup files and all associated storage management userids/LIDs/ACIDs.
If ESM data set rules for system DASD backup files do not restrict UPDATE and ALLOCATE access to z/OS systems programming and/or batch jobs that perform DASD backups, this is a finding.
If READ Access to system backup data sets is not limited to auditors and others approved by the ISSM, this is a finding.
V-223458
False
ACF2-ES-000380
Collect from the storage management group the identification of the DASD backup files and all associated storage management userids/LIDs/ACIDs.
If ESM data set rules for system DASD backup files do not restrict UPDATE and ALLOCATE access to z/OS systems programming and/or batch jobs that perform DASD backups, this is a finding.
If READ Access to system backup data sets is not limited to auditors and others approved by the ISSM, this is a finding.
M
4100