STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:

ACF2 APPLDEF GSO record if used must have supporting documentation indicating the reason it was used.

DISA Rule

SV-223488r533198_rule

Vulnerability Number

V-223488

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

ACF2-ES-000700

Severity

CAT III

CCI(s)

• CCI-000368 - The organization documents any deviations from the established configuration settings for organization-defined information system components based on organization-defined operational requirements.
• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

For any APPLDEF GSO record used, it must have supporting documentation indicating the reason it was used.

The APPLDEF record is optional.

Check Contents

From the ACF Command screen enter:
SET CONTROL(GSO)
LIST LIKE(APPLDEF-)

If the GSO APPLDEF record does not exist, this is not a finding.

If the GSO APPLDEF record does exist and no supporting documentation is available, this is a finding.

Vulnerability Number

V-223488

Documentable

False

Rule Version

ACF2-ES-000700

Severity Override Guidance

From the ACF Command screen enter:
SET CONTROL(GSO)
LIST LIKE(APPLDEF-)

If the GSO APPLDEF record does not exist, this is not a finding.

If the GSO APPLDEF record does exist and no supporting documentation is available, this is a finding.

Check Content Reference

M

Target Key

4100

Comments