STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

CA VM:Secure Product SFS configuration file must be restricted to appropriate personnel.

DISA Rule

SV-93675r1_rule

Vulnerability Number

V-78969

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

IBMZ-VM-001270

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Create rules in the CA VM:Secure product Rules Facility that restricts access to the disk where the “SFS” configuration file resides to system administrators or DASD administrators only.

Check Contents

Query the CA VM:Secure product rules.

If there are product rules granting access to the disk on which the “SFS” configuration file resides for system administrators or DASD administrators only, this is not a finding.

Vulnerability Number

V-78969

Documentable

False

Rule Version

IBMZ-VM-001270

Severity Override Guidance

Query the CA VM:Secure product rules.

If there are product rules granting access to the disk on which the “SFS” configuration file resides for system administrators or DASD administrators only, this is not a finding.

Check Content Reference

M

Target Key

3211

Comments