STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020: STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:SV-82809r1_rule
V-68319
SRG-APP-000133-MFP-000194
SRG-APP-000133-MFP-000194
CAT II
10
Configure the Mainframe Product to limit privileges to changing the software resident within software libraries.
This can be accomplished with an ESM.
Configure the ESM to restrict update and greater access to Mainframe Product started tasks and job datasets to security administrators in accordance with applicable access control policies.
If an external security manager (ESM) is in use, check the ESM rules and configuration.
If there are no rules for Mainframe Product user datasets or the rules do not restrict access to Mainframe Product user datasets to authorized users as directed by applicable access control policies, this is a finding.
If an ESM is NOT in use, examine installation and configuration settings.
If the Mainframe Product does not restrict access to Mainframe Product user datasets to authorized users as directed by applicable access control policies, this is a finding.
V-68319
False
SRG-APP-000133-MFP-000194
If an external security manager (ESM) is in use, check the ESM rules and configuration.
If there are no rules for Mainframe Product user datasets or the rules do not restrict access to Mainframe Product user datasets to authorized users as directed by applicable access control policies, this is a finding.
If an ESM is NOT in use, examine installation and configuration settings.
If the Mainframe Product does not restrict access to Mainframe Product user datasets to authorized users as directed by applicable access control policies, this is a finding.
M
3061