STIGQter: STIG Summary: z/OS IBM System Display and Search Facility (SDSF) for ACF2 STIG Version: 6 Release: 8 Benchmark Date: 22 Apr 2016:

IBM System Display and Search Facility (SDSF) Resource Class will be defined or active in the ACP.

DISA Rule

SV-40830r1_rule

Vulnerability Number

V-18011

Group Title

ZB000038

Rule Version

ZISFA038

Severity

CAT II

CCI(s)

• CCI-000336 - The organization, after the information system is changed, checks the security functions to verify the functions are operating as intended.
• CCI-002358 - The information system implements a reference monitor for organization-defined access control policies that is always invoked.

Weight

10

Fix Recommendation

The IAO will use SAF security to define and protect the IBM System Display and Search Facility (SDSF) resource class(es).

Use the following commands as an example:

CLASMAP.SDSF RESOURCE(SDSF) RSRCTYPE(SDS) ENTITYLN(39)

Check Contents

Refer to the following report produced by the ACF2 Data Collection:

- ACF2CMDS.RPT(ACFGSO)

If the following GSO CLASMAP record entry(ies) is (are) defined, this is not a finding.

CLASMAP.SDSF RESOURCE(SDSF) RSRCTYPE(SDS) ENTITYLN(39)

Vulnerability Number

V-18011

Documentable

False

Rule Version

ZISFA038

Severity Override Guidance

Refer to the following report produced by the ACF2 Data Collection:

- ACF2CMDS.RPT(ACFGSO)

If the following GSO CLASMAP record entry(ies) is (are) defined, this is not a finding.

CLASMAP.SDSF RESOURCE(SDSF) RSRCTYPE(SDS) ENTITYLN(39)

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

2190

Comments