UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The Distributed Console Access Facility (DCAF) Console must be restricted to only authorize personnel.


Overview

Finding ID Version Rule ID IA Controls Severity
V-24344 HLESC080 SV-29998r1_rule ECLP-1 Medium
Description
The DCAF Console enables an operator to access the ESCON Director Application remotely. Access to a DCAF Console by unauthorized personnel could result in varying of ESCON Directors online or offline and applying configuration changes. Unrestricted use by unauthorized personnel could lead to bypass of security, unlimited access to the system, and an altering of the environment. This would result in a loss of secure operations and will impact data operating integrity of the environment.
STIG Date
IBM Hardware Management Console (HMC) STIG 2013-06-26

Details

Check Text ( C-679r1_chk )
Verify that sign-on access to the DCAF Console is restricted to authorized personnel.

If sign-on access to the DCAF Console is not restricted this is a FINDING.
Fix Text (F-2361r1_fix)
Review access authorization to DCAF Consoles. Ensure that all personnel are restricted to authorized levels of access.

Remote access to the LAN may be provided through DCAF via a LAN or modem connection.
DCAF passwords should be implemented to prevent unauthorized access.