STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

CA VM:Secure product AUDIT file must be restricted to authorized personnel.

DISA Rule

SV-93567r1_rule

Vulnerability Number

V-78861

Group Title

SRG-OS-000057-GPOS-00027

Rule Version

IBMZ-VM-000190

Severity

CAT II

CCI(s)

• CCI-000162 - The information system protects audit information from unauthorized access.
• CCI-000163 - The information system protects audit information from unauthorized modification.
• CCI-000164 - The information system protects audit information from unauthorized deletion.

Weight

10

Fix Recommendation

Ensure access to VMSECURE AUDIT disk is restricted to system administrators or security administrators.

Check Contents

Determine the VMSECURE Audit disk.
Note: Consult the z/VM system administrator for this information.

Review all rules that grant access to the identified VM:Secure AUDIT disk.

If any grant access to anyone other than a system administrator or security administrator, this is a finding.

Vulnerability Number

V-78861

Documentable

False

Rule Version

IBMZ-VM-000190

Severity Override Guidance

Determine the VMSECURE Audit disk.
Note: Consult the z/VM system administrator for this information.

Review all rules that grant access to the identified VM:Secure AUDIT disk.

If any grant access to anyone other than a system administrator or security administrator, this is a finding.

Check Content Reference

M

Target Key

3211

Comments