STIGQter: STIG Summary: IBM z/OS TSS Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:

The CA-TSS HPBPW Control Option must be set to three days maximum.

DISA Rule

SV-223933r561402_rule

Vulnerability Number

V-223933

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

TSS0-ES-000600

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Evaluate the impact associated with implementation of the control option. Develop a plan of action to implement the HPBPW control option setting to a maximum of 3 days.

Check Contents

From the ISPF Command enter:
TSS MODIFY STATUS

If the HPBPW Control Option value is set to (3) days maximum, this is not a finding.

If the HPBPW Control Option value is set to greater than (3) days, this is a finding.

Vulnerability Number

V-223933

Documentable

False

Rule Version

TSS0-ES-000600

Severity Override Guidance

From the ISPF Command enter:
TSS MODIFY STATUS

If the HPBPW Control Option value is set to (3) days maximum, this is not a finding.

If the HPBPW Control Option value is set to greater than (3) days, this is a finding.

Check Content Reference

M

Target Key

4102

Comments