STIGQter: STIG Summary: z/OS TADz for RACF STIG Version: 6 Release: 6 Benchmark Date: 22 Apr 2016:

Tivoli Asset Discovery for z/OS (TADz) Started Task name(s) must be properly identified / defined to the system ACP.

DISA Rule

SV-28554r2_rule

Vulnerability Number

V-17452

Group Title

ZB000030

Rule Version

ZTADR030

Severity

CAT II

CCI(s)

• CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

10

Fix Recommendation

The Systems Programmer and ISSO will ensure that the started task for TADz is properly defined.

Define the started task for TADz.

Example:

au tadzmon name('stc, tivoli AD') nopass -
dfltgrp(stc) owner(stc) -
data('stc for tivoli asset discovery')

Check Contents

Refer to the following report produced by the RACF Data Collection:

- RACFCMDS.RPT(LISTUSER)

If the userid(s) for the TADz started task is defined to the security database, there is NO FINDING.

If the userid(s) for the TADz started task is not defined to the security database, this is a FINDING.

Vulnerability Number

V-17452

Documentable

False

Rule Version

ZTADR030

Severity Override Guidance

Refer to the following report produced by the RACF Data Collection:

- RACFCMDS.RPT(LISTUSER)

If the userid(s) for the TADz started task is defined to the security database, there is NO FINDING.

If the userid(s) for the TADz started task is not defined to the security database, this is a FINDING.

Check Content Reference

M

Responsibility

Systems Programmer

Target Key

1858

Comments