STIGQter STIGQter: STIG Summary: z/OS RACF STIG Version: 6 Release: 43 Benchmark Date: 24 Jan 2020: Started Tasks are not properly identified to RACF.

DISA Rule

SV-288r2_rule

Vulnerability Number

V-288

Group Title

RACF0620

Rule Version

RACF0620

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Define a RACF STARTED Class profile for each Started Proc that maps the proc to a unique userid, or STC userids will be unique per product and function if supported by vendor documentation. This can be accomplished with the sample command:

RDEF STARTED <procname>.** UACC(NONE) OWNER(ADMIN) AUDIT(ALL(READ)) STDATA(USER(<userid>) GROUP(<groupname>) TRACE(YES))

A corresponding USERID must be defined with appropriate authority. The "groupname" should be a valid STC group with no interactive users.

Check Contents

Refer to the following reports produced by the RACF Data Collection:

- DSMON.RPT(RACSPT)
- RACFCMDS.RPT(LISTUSER)

Refer to a list of all started tasks (STCs) and associated userids with a brief description on the system.

Started task procedures will have a unique associated userid or STC userids will be unique per product and function if supported by vendor documentation

Vulnerability Number

V-288

Documentable

False

Rule Version

RACF0620

Severity Override Guidance

Refer to the following reports produced by the RACF Data Collection:

- DSMON.RPT(RACSPT)
- RACFCMDS.RPT(LISTUSER)

Refer to a list of all started tasks (STCs) and associated userids with a brief description on the system.

Started task procedures will have a unique associated userid or STC userids will be unique per product and function if supported by vendor documentation

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

197

Comments