Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
BMC Mainview for z/OS Resource Class must be defined or active in the ACP.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-224613 | ZMVZT038 | SV-224613r868741_rule | Medium |
| Description |
|---|
| Failure to use a robust ACP to control a product could potentially compromise the integrity and availability of the MVS operating system and user data. |
| STIG | Date |
|---|---|
| z/OS BMC MAINVIEW for z/OS for TSS Security Technical Implementation Guide | 2022-10-10 |
Details
| Check Text ( C-26296r868739_chk ) |
|---|
| Refer to the following report produced by the ACP Data Collection: - TSSCMDS.RPT(#RDT) If the BMC Mainview for z/OS Resource Class(es) is (are) defined in the Resource Definition Table (RDT) as follows, this is not a finding. RESOURCE CLASS = class RESOURCE CODE = X'hex code' ATTRIBUTE = MASK|NOMASK,MAXOWN(08),MAXPERMIT(044),ACCESS,DEFPROT ACCESS = NONE(0000),CONTROL(0400),UPDATE(6000),READ(4000) ACCESS = WRITE(2000),ALL(FFFF) DEFACC = READ |
| Fix Text (F-26284r868740_fix) |
|---|
| The ISSO will ensure the BMC Mainview for z/OS resource class(es) is (are) defined in the TSS RDT. (Note: The RESCLASS and/or RESCODE identified below are examples of a possible installation. The actual RESCLASS and/or RESCODE values are determined when the product is actually installed on a system through the product's installation guide and can be site specific.) Use the following commands as an example: TSS ADDTO(RDT) RESCLASS(BMCVIEW) - RESCODE(3B) DEFACC(READ) - ATTR(MASK|NOMASK,DEFPROT,LONG,GENERIC) - ACLST(NONE,READ,UPDATE,ALL) |