STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:

The number of ACF2 users granted the special privilege PPGM must be justified.

DISA Rule

SV-223423r533198_rule

Vulnerability Number

V-223423

Group Title

SRG-OS-000080-GPOS-00048

Rule Version

ACF2-ES-000020

Severity

CAT II

CCI(s)

• CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

10

Fix Recommendation

Ensure that access to the special privilege PPGM is kept to a minimum and limited to systems programmer and operations personnel.

Check Contents

From the ISPF Command Shell enter:
SET LID
SET VERBOSE
LIST IF(PPGM)

If the number of users granted the special privilege PPGM is strictly controlled and limited to systems programmer and operations personnel, this is not a finding.

Vulnerability Number

V-223423

Documentable

False

Rule Version

ACF2-ES-000020

Severity Override Guidance

From the ISPF Command Shell enter:
SET LID
SET VERBOSE
LIST IF(PPGM)

If the number of users granted the special privilege PPGM is strictly controlled and limited to systems programmer and operations personnel, this is not a finding.

Check Content Reference

M

Target Key

4100

Comments