STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:

IBM z/OS SMF collection files (system MANx data sets or LOGSTREAM DASD) must have storage capacity to store at least one weeks worth of audit data.

DISA Rule

SV-223547r533198_rule

Vulnerability Number

V-223547

Group Title

SRG-OS-000341-GPOS-00132

Rule Version

ACF2-OS-000110

Severity

CAT II

CCI(s)

CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

Fix Recommendation

Make sure output file and dump procedures allow storage capacity to store one week's worth of audit data.

Check Contents

Review the SMF dump procedure in the system.

If the output data sets in the procedure have storage capacity to store at least one week's worth of audit data, this is not a finding.

Vulnerability Number

V-223547

Documentable

False

Rule Version

ACF2-OS-000110

Severity Override Guidance

Review the SMF dump procedure in the system.

If the output data sets in the procedure have storage capacity to store at least one week's worth of audit data, this is not a finding.

Check Content Reference

Target Key

4100

IBM z/OS SMF collection files (system MANx data sets or LOGSTREAM DASD) must have storage capacity to store at least one weeks worth of audit data.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments