STIGQter STIGQter: STIG Summary: z/OS RACF STIG Version: 6 Release: 43 Benchmark Date: 24 Jan 2020: DFSMS-related RACF classes are not active.

DISA Rule

SV-7244r2_rule

Vulnerability Number

V-6943

Group Title

ZSMSR008

Rule Version

ZSMSR008

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

CLASSACT Resources

ACTIVE CLASSES lists the MGMTCLAS, STORCLAS, PROGRAM, and FACILITY resources classes.

The classes can be activated with the command:
SETR CLASSACT(MGMTCLAS STORCLAS PROGRAM FACILITY)

RACLIST CLASSES lists the MGMTCLAS and STORCLAS resource classes.

The classes can be RACLISTED with the command:
SETR RACL(MGMTCLAS STORCLAS)

Check Contents

CLASSACT Resources

a) Refer to the following report produced by the RACF Data Collection:

- RACFCMDS.RPT(SETROPTS)

b) ACTIVE CLASSES lists the MGMTCLAS, STORCLAS, PROGRAM, and FACILITY resources classes.

c) RACLIST CLASSES lists the MGMTCLAS and STORCLAS resource classes.

d) If (b) and (c) are true, there is NO FINDING.

e) If (b) or (c) is not true, this is a FINDING.

Vulnerability Number

V-6943

Documentable

False

Rule Version

ZSMSR008

Severity Override Guidance

CLASSACT Resources

a) Refer to the following report produced by the RACF Data Collection:

- RACFCMDS.RPT(SETROPTS)

b) ACTIVE CLASSES lists the MGMTCLAS, STORCLAS, PROGRAM, and FACILITY resources classes.

c) RACLIST CLASSES lists the MGMTCLAS and STORCLAS resource classes.

d) If (b) and (c) are true, there is NO FINDING.

e) If (b) or (c) is not true, this is a FINDING.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

197

Comments