STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

IBM z/VM must employ a Session manager.

DISA Rule

SV-93679r1_rule

Vulnerability Number

V-78973

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

IBMZ-VM-002330

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Ensure that a session manager is in use with the system.

Check Contents

Examine running systems.

If access is gained to the z/VM system without going through a session manager, this is a finding.

Vulnerability Number

V-78973

Documentable

False

Rule Version

IBMZ-VM-002330

Severity Override Guidance

Examine running systems.

If access is gained to the z/VM system without going through a session manager, this is a finding.

Check Content Reference

M

Target Key

3211

Comments