STIGQter STIGQter: STIG Summary:

zOS WebsphereMQ for RACF STIG

Version: 6

Release: 2 Benchmark Date: 24 Jul 2020

CheckedNameTitle
SV-3903r3_ruleUser timeout parameter values for WebSphere MQ queue managers are not specified in accordance with security requirements.
SV-7526r3_ruleWebSphere MQ started tasks are not defined in accordance with the proper security requirements.
SV-3905r3_ruleWebSphere MQ all update and alter access to MQSeries/WebSphere MQ product and system data sets are not properly restricted
SV-7259r6_ruleWebSphere MQ channel security must be implemented in accordance with security requirements.
SV-7534r3_ruleWebSphere MQ resource classes are not properly actived for security checking by the ACP.
SV-7538r4_ruleWebSphere MQ switch profiles must be properly defined to the MQADMIN class.
SV-7541r4_ruleWebSphere MQ MQCONN Class (Connection) resource definitions must be protected in accordance with security.
SV-7267r3_ruleWebSphere MQ dead letter and alias dead letter queues are not properly defined.
SV-7544r3_ruleWebSphere MQ MQQUEUE (Queue) resource profiles defined to the MQQUEUE class are not protected in accordance with security requirements.
SV-7546r3_ruleWebSphere MQ Process resource profiles defined in the MQPROC Class are not protected in accordance with security requirements.
SV-7548r3_ruleWebSphere MQ Namelist resource profiles defined in the MQNLIST Class are not protected in accordance with security requirements.
SV-7550r3_ruleWebSphere MQ Alternate User resources defined to MQADMIN resource class are not protected in accordance with security requirements.
SV-7552r3_ruleWebSphere MQ context resources defined to the MQADMIN resource class are not protected in accordance with security requirements.
SV-7554r3_ruleWebSphere MQ command resources defined to MQCMDS resource class are not protected in accordance with security requirements.
SV-7556r3_ruleWebSphere MQ RESLEVEL resources in the MQADMIN resource class are not protected in accordance with security requirements.
SV-111903r1_ruleWebSphere MQ channel security is not implemented in accordance with security requirements.
SV-41848r5_ruleProduction WebSphere MQ Remotes must utilize Certified Name Filters (CNF)