STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

The CA VM:Secure JOURNAL Facility parameters must be set for lockout after 3 attempts.

DISA Rule

SV-93555r1_rule

Vulnerability Number

V-78849

Group Title

SRG-OS-000021-GPOS-00005

Rule Version

IBMZ-VM-000045

Severity

CAT II

CCI(s)

• CCI-000044 - The information system enforces the organization-defined limit of consecutive invalid logon attempts by a user during the organization-defined time period.

Weight

10

Fix Recommendation

Edit the SECURITY CONFIG file:

vmsecure config security

Configure a JOURNAL record in the SECURITY CONFIG file as follows:

JOURNAL 3 3

Note: The "warning" setting may be determined by the site but must be 3 or less.

Check Contents

Examine VM:Secure Security Config File.

If there is no Journal record this is a finding.

If the Journal record has a maximum consecutive invalid password attempts set to 3, this is not a finding.

Note: The "warning" setting may be determined by the site but must be 3 or less.

Example:
JOURNAL 3 3

Vulnerability Number

V-78849

Documentable

False

Rule Version

IBMZ-VM-000045

Severity Override Guidance

Examine VM:Secure Security Config File.

If there is no Journal record this is a finding.

If the Journal record has a maximum consecutive invalid password attempts set to 3, this is not a finding.

Note: The "warning" setting may be determined by the site but must be 3 or less.

Example:
JOURNAL 3 3

Check Content Reference

M

Target Key

3211

Comments