STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

IBM z/VM must have access to an audit reduction tool that allows for central data review and analysis.

DISA Rule

SV-93693r1_rule

Vulnerability Number

V-78987

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

IBMZ-VM-002400

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Develop a process for routing audit records to an audit reduction tool.

Document the process and file with the ISSM/ISSO.

Check Contents

Ask the system administrator if there is an audit reduction tool available for use with IBM z/VM.

Determine if a process is established to route audit records to the tool.

If there is no audit tool available, this is a finding.

If a procedure for routing audit records to the tool is not documented and on file with the ISSM/ISSO, this is a finding.

Vulnerability Number

V-78987

Documentable

False

Rule Version

IBMZ-VM-002400

Severity Override Guidance

Ask the system administrator if there is an audit reduction tool available for use with IBM z/VM.

Determine if a process is established to route audit records to the tool.

If there is no audit tool available, this is a finding.

If a procedure for routing audit records to the tool is not documented and on file with the ISSM/ISSO, this is a finding.

Check Content Reference

M

Target Key

3211

Comments