STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

The IBM z/VM Privilege command class A and Class B must be properly assigned.

DISA Rule

SV-93623r1_rule

Vulnerability Number

V-78917

Group Title

SRG-OS-000362-GPOS-00149

Rule Version

IBMZ-VM-000900

Severity

CAT II

CCI(s)

• CCI-001812 - The information system prohibits user installation of software without explicit privileged status.

Weight

10

Fix Recommendation

Configure the IBM z/VM to grant CP Privilege Class A or B to system administrators or system operators only.

Check Contents

Examine CP Directory.

If Privilege CLASS A or B is granted to anyone other than systems administrators or systems operators, this is a finding.

Note: Restrict link to disk where system software resides.

Vulnerability Number

V-78917

Documentable

False

Rule Version

IBMZ-VM-000900

Severity Override Guidance

Examine CP Directory.

If Privilege CLASS A or B is granted to anyone other than systems administrators or systems operators, this is a finding.

Note: Restrict link to disk where system software resides.

Check Content Reference

M

Target Key

3211

Comments