STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must be configured such that emergency accounts are never automatically removed or disabled.

DISA Rule

SV-82623r1_rule

Vulnerability Number

V-68133

Group Title

SRG-APP-000234-MFP-000037

Rule Version

SRG-APP-000234-MFP-000037

Severity

CAT II

CCI(s)

• CCI-001682 - The information system automatically removes or disables emergency accounts after an organization-defined time period for each type of account.

Weight

10

Fix Recommendation

Configure the Mainframe Product account management settings to never automatically remove or disable emergency accounts.

Accounts should be configured to terminate within 72 hours or until crisis has passed.

Check Contents

If the Mainframe Product employs an external security manager for all account management functions, this is not applicable.

Examine account management settings.

If emergency accounts are configured to never be automatically removed or disabled, this is not a finding.

Vulnerability Number

V-68133

Documentable

False

Rule Version

SRG-APP-000234-MFP-000037

Severity Override Guidance

If the Mainframe Product employs an external security manager for all account management functions, this is not applicable.

Examine account management settings.

If emergency accounts are configured to never be automatically removed or disabled, this is not a finding.

Check Content Reference

M

Target Key

3061

Comments