Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
IBM RACF must define UACC of NONE on all profiles.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-223777 | RACF-OS-000210 | SV-223777r853619_rule | High |
| Description |
|---|
| The operating system must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs. |
| STIG | Date |
|---|---|
| IBM z/OS RACF Security Technical Implementation Guide | 2023-03-20 |
Details
| Check Text ( C-25450r515019_chk ) |
|---|
| Review all Dataset and resource profiles in the RACF database. If any are not defined with UACC NONE, this is a finding. |
| Fix Text (F-25438r515020_fix) |
|---|
| Define each dataset and resource profile with UACC(NONE) |