IBM z/OS system administrator must develop a procedure to remove or disable emergency accounts after the crisis is resolved or 72 hours.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-223799 | RACF-OS-000450 | SV-223799r998376_rule | Medium |
| Description |
|---|
| IBM z/OS system administrator must develop a procedure to remove or disable emergency accounts after the crisis is resolved or 72 hours. |
| STIG | Date |
|---|---|
| IBM z/OS RACF Security Technical Implementation Guide | 2024-06-24 |
Details
| Check Text ( C-25472r998375_chk ) |
|---|
| Ask the system administrator (SA) for the procedure to automatically remove or disable emergency accounts after the crisis is resolved or 72 hours. If there is no procedure, this is a finding. |
| Fix Text (F-25460r515086_fix) |
|---|
| Develop a procedure to remove or disable emergency user accounts after the crisis is resolved or 72 hours. |