STIGQter: STIG Summary: z/OS BMC CONTROL-D for TSS STIG Version: 6 Release: 7 Benchmark Date: 26 Oct 2018:

BMC CONTROL-D configuration/parameter values are not specified properly.

DISA Rule

SV-32211r1_rule

Vulnerability Number

V-18014

Group Title

ZB000040

Rule Version

ZCTD0040

Severity

CAT II

CCI(s)

CCI-000035 - The information system provides the capability for privileged administrators to configure the organization-defined security policy filters to support different security policies.

Weight

Fix Recommendation

The BMC CONTROL-D Systems programmer will verify that any configuration/parameters that are required to control the security of the product are properly configured and syntactically correct. Set the standard values for the BMC CONTROL-D security parameters for the specific ACP environment along with additional IOA security parameters with standard values as documented below.

Keyword Value
DEFMCHKD $$CTDEDM
SECTOLD NO
DFMD01 EXTEND
DFMD04 EXTEND
DFMD08 EXTEND
DFMD19 EXTEND
DFMD23 EXTEND
DFMD24 EXTEND
DFMD26 EXTEND
DFMD27 EXTEND

Check Contents

Refer to the following applicable reports produced by the z/OS Data Collection:

- IOA.RPT(SECPARM)

Automated Analysis
Refer to the following report produced by the z/OS Data Collection:

- PDI(ZCTD0040)

The following keywords will have the specified values in the BMC CONTROL-D security parameter member:

Keyword Value
DEFMCHKD $$CTDEDM
SECTOLD NO
DFMD01 EXTEND
DFMD04 EXTEND
DFMD08 EXTEND
DFMD19 EXTEND
DFMD23 EXTEND
DFMD24 EXTEND
DFMD26 EXTEND
DFMD27 EXTEND

BMC CONTROL-D configuration/parameter values are not specified properly.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Responsibility

Target Key

Comments