STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

CA VM:Secure product MANAGE command must be restricted to system administrators.

DISA Rule

SV-93635r1_rule

Vulnerability Number

V-78929

Group Title

SRG-OS-000312-GPOS-00124

Rule Version

IBMZ-VM-000980

Severity

CAT II

CCI(s)

• CCI-002165 - The information system enforces organization-defined discretionary access control policies over defined subjects and objects.

Weight

10

Fix Recommendation

Include the “GRANT” statement for the “MANAGE” command to restrict to system administrators only.

Check Contents

Examine “AUTHORIZ CONFIG” file.

If the “MANAGE” command is only granted to system administrators, this is not a finding.

Vulnerability Number

V-78929

Documentable

False

Rule Version

IBMZ-VM-000980

Severity Override Guidance

Examine “AUTHORIZ CONFIG” file.

If the “MANAGE” command is only granted to system administrators, this is not a finding.

Check Content Reference

M

Target Key

3211

Comments