STIGQter STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must provide the capability for system programmers to change the auditing to be performed on all application components based on all selectable event criteria within time thresholds defined in the site security plan.

DISA Rule

SV-82673r1_rule

Vulnerability Number

V-68183

Group Title

SRG-APP-000353-MFP-000112

Rule Version

SRG-APP-000353-MFP-000112

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the Mainframe Product to allow system programmers the capability to change auditing settings.

This can be accomplished by using the ESM.

Configure the ESM to allow update and above access to system programmers.

Check Contents

Examine the installation and configuration settings.

If system programmers do not have the capability to change auditing settings in accordance with applicable access control policies, this is a finding.

If an external security manager (ESM) is used, check the ESM rules and configuration.

If there are no rules for these resources or the rules do not allow update and above access to system programmers in accordance with applicable access control policies, this is a finding.

Vulnerability Number

V-68183

Documentable

False

Rule Version

SRG-APP-000353-MFP-000112

Severity Override Guidance

Examine the installation and configuration settings.

If system programmers do not have the capability to change auditing settings in accordance with applicable access control policies, this is a finding.

If an external security manager (ESM) is used, check the ESM rules and configuration.

If there are no rules for these resources or the rules do not allow update and above access to system programmers in accordance with applicable access control policies, this is a finding.

Check Content Reference

M

Target Key

3061

Comments