STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must shut down by default upon audit failure (unless availability is an overriding concern).

DISA Rule

SV-82757r1_rule

Vulnerability Number

V-68267

Group Title

SRG-APP-000109-MFP-000155

Rule Version

SRG-APP-000109-MFP-000155

Severity

CAT II

CCI(s)

• CCI-000140 - The information system takes organization-defined actions upon audit failure (e.g., shut down information system, overwrite oldest audit records, stop generating audit records).

Weight

10

Fix Recommendation

Configure the Mainframe Product to shut down by default upon audit failure (unless availability is an overriding concern).

Check Contents

If the Mainframe Product does not perform audit data management or storage function, this is not applicable.

Examine configuration settings for audit failure parameters.

If Mainframe Product does not shut down by default in the event of audit processing failure, this is a finding.

Note: This depends on whether availability is an overriding concern.

Vulnerability Number

V-68267

Documentable

False

Rule Version

SRG-APP-000109-MFP-000155

Severity Override Guidance

If the Mainframe Product does not perform audit data management or storage function, this is not applicable.

Examine configuration settings for audit failure parameters.

If Mainframe Product does not shut down by default in the event of audit processing failure, this is a finding.

Note: This depends on whether availability is an overriding concern.

Check Content Reference

M

Target Key

3061

Comments