STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must initiate session auditing upon startup.

DISA Rule

SV-82725r1_rule

Vulnerability Number

V-68235

Group Title

SRG-APP-000092-MFP-000137

Rule Version

SRG-APP-000092-MFP-000137

Severity

CAT II

CCI(s)

• CCI-001464 - The information system initiates session audits at system start-up.

Weight

10

Fix Recommendation

Configure the Mainframe Product to initiate session auditing upon startup.

Check Contents

If the Mainframe Product has no function or capability for session operations, this is not applicable.

Examine installation and configuration settings.

Verify that session auditing is initiated at session startup. If it is not, this is a finding.

Vulnerability Number

V-68235

Documentable

False

Rule Version

SRG-APP-000092-MFP-000137

Severity Override Guidance

If the Mainframe Product has no function or capability for session operations, this is not applicable.

Examine installation and configuration settings.

Verify that session auditing is initiated at session startup. If it is not, this is a finding.

Check Content Reference

M

Target Key

3061

Comments