STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: IBM z/OS ACF2 Security Technical Implementation Guide Version: 8 Release: 2 Benchmark Date: 23 Apr 2021:SV-223496r533198_rule
V-223496
SRG-OS-000104-GPOS-00051
ACF2-ES-000780
CAT II
10
Define every user to ACF2 with a unique userid. (ACF2 calls this a logonid.) To ACF2, a user is an individual, a started task, or a batch job.
Every user will be fully identified within ACF2. Complete the following fields for every logonid:
NAME - User's name
UID-String - All fields defined in the ACFFDR @UID macro
All fields that comprise the standard UID string will be filled out for each user as a logonid is added.
Example:
SET LID
INSERT logonid UID(uid string) NAME(user name)
From an ACF Command Screen enter:
SET LID
LIST *
If the below listed fields are complete for all logonids, this is not a finding.
NAME User's name
UID-String All fields defined in the ACFFDR @UID macro
NOTE: A completed NAME field that can either be traced back to a current DD Form 2875 or a Vendor Requirement (example: A Started Task).
NOTE: A user may be required to have more than one logonid but users must not share userids.
V-223496
False
ACF2-ES-000780
From an ACF Command Screen enter:
SET LID
LIST *
If the below listed fields are complete for all logonids, this is not a finding.
NAME User's name
UID-String All fields defined in the ACFFDR @UID macro
NOTE: A completed NAME field that can either be traced back to a current DD Form 2875 or a Vendor Requirement (example: A Started Task).
NOTE: A user may be required to have more than one logonid but users must not share userids.
M
4100