STIGQter STIGQter: STIG Summary: z/OS ACF2 STIG Version: 6 Release: 43 Benchmark Date: 24 Jan 2020: DFSMS resource type(s) is(are) not defined to the GSO INFODIR record in accordance with security requirements.

DISA Rule

SV-7240r2_rule

Vulnerability Number

V-6939

Group Title

ZSMSA004

Rule Version

ZSMSA004

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The IAO will ensure that r-rmgm, r-rstr, r-rfac and r-rpgm resource types are defined within the GSO INFODIR.

Review the GSO INFODIR record for the following definitions:

R-RMGM
R-RSTR
R-RFAC
R-RPGM

Ensure all of the resources above are in the GSO INFODIR record.

Example:

SET C(GSO)
LIST INFODIR

CHANGE INFODIR TYPES(R-RMGM R-RSTR R-RFAC R-RPGM)

Check Contents

GSO INFODIR Records

a) Refer to the following report produced by the ACF2 Data Collection:

- ACF2CMDS.RPT(ACFGSO)

b) Review the GSO INFODIR record for the following definitions:

R-RMGM
R-RSTR
R-RFAC
R-RPGM

c) If all of the resources in (b) above are in the GSO INFODIR record, there is NO FINDING.

d) If any of the resources in (b) above is not in the GSO INFODIR record, this is a FINDING.

Vulnerability Number

V-6939

Documentable

False

Rule Version

ZSMSA004

Severity Override Guidance

GSO INFODIR Records

a) Refer to the following report produced by the ACF2 Data Collection:

- ACF2CMDS.RPT(ACFGSO)

b) Review the GSO INFODIR record for the following definitions:

R-RMGM
R-RSTR
R-RFAC
R-RPGM

c) If all of the resources in (b) above are in the GSO INFODIR record, there is NO FINDING.

d) If any of the resources in (b) above is not in the GSO INFODIR record, this is a FINDING.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

198

Comments