STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must generate audit records when concurrent logons from different workstations occur.

DISA Rule

SV-82713r1_rule

Vulnerability Number

V-68223

Group Title

SRG-APP-000506-MFP-000131

Rule Version

SRG-APP-000506-MFP-000131

Severity

CAT II

CCI(s)

• CCI-000172 - The information system generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Weight

10

Fix Recommendation

Configure the Mainframe Product to provide audit SAF call when concurrent logons from different workstations occur.

Check Contents

If the Mainframe Product has no function or capability for user logon, this is not applicable.

Examine configuration settings.

If the Mainframe Product does not generate audit records when concurrent logons from different workstations occur, this is a finding.

Vulnerability Number

V-68223

Documentable

False

Rule Version

SRG-APP-000506-MFP-000131

Severity Override Guidance

If the Mainframe Product has no function or capability for user logon, this is not applicable.

Examine configuration settings.

If the Mainframe Product does not generate audit records when concurrent logons from different workstations occur, this is a finding.

Check Content Reference

M

Target Key

3061

Comments