STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must enforce approved authorizations for system programmer access to sensitive information and system resources in accordance with applicable access control policies.

DISA Rule

SV-82655r1_rule

Vulnerability Number

V-68165

Group Title

SRG-APP-000033-MFP-000066

Rule Version

SRG-APP-000033-MFP-000066

Severity

CAT II

CCI(s)

CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

Fix Recommendation

Configure the Mainframe Product to enforce role and/or resource access in accordance with applicable access control policies. This can be accomplished using an ESM.

Configure the ESM to restrict system programmer access according to applicable access control policies.

Check Contents

If an external security manager (ESM) is used, check the ESM rules and configuration.

If there are no rules for these resources or the rules do not restrict system programmer access in accordance with applicable access control policies, this is a finding.

If an ESM is not in use, examine installation and configuration settings.

Verify that the Mainframe Product enforces system programmer access to information and system resources in accordance with applicable access control policies.

If it does not, this is a finding.

The Mainframe Product must enforce approved authorizations for system programmer access to sensitive information and system resources in accordance with applicable access control policies.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments