UCF STIG Viewer Logo

IBM RACF must define UACC of NONE on all profiles.


Overview

Finding ID Version Rule ID IA Controls Severity
V-223777 RACF-OS-000210 SV-223777r604139_rule High
Description
The operating system must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.
STIG Date
IBM z/OS RACF Security Technical Implementation Guide 2021-01-05

Details

Check Text ( C-25450r515019_chk )
Review all Dataset and resource profiles in the RACF database.

If any are not defined with UACC NONE, this is a finding.
Fix Text (F-25438r515020_fix)
Define each dataset and resource profile with UACC(NONE)