STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must provide the capability to centrally review and analyze audit records from multiple components within the system.

DISA Rule

SV-82759r1_rule

Vulnerability Number

V-68269

Group Title

SRG-APP-000111-MFP-000156

Rule Version

SRG-APP-000111-MFP-000156

Severity

CAT II

CCI(s)

• CCI-000154 - The information system provides the capability to centrally review and analyze audit records from multiple components within the system.

Weight

10

Fix Recommendation

Configure the Mainframe Product to centrally review and analyze audit records from multiple components in the system.

Check Contents

If the Mainframe Product does not perform audit data management or storage function, this is not applicable.

Examine installation and configuration settings.

Verify the Mainframe Product has the capability to centrally review and analyze audit records from multiple components in the system. If it does not, this is a finding.

Vulnerability Number

V-68269

Documentable

False

Rule Version

SRG-APP-000111-MFP-000156

Severity Override Guidance

If the Mainframe Product does not perform audit data management or storage function, this is not applicable.

Examine installation and configuration settings.

Verify the Mainframe Product has the capability to centrally review and analyze audit records from multiple components in the system. If it does not, this is a finding.

Check Content Reference

M

Target Key

3061

Comments