z/OS CA 1 Tape Management for ACF2 STIG

Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

z/OS CA 1 Tape Management for ACF2 STIG

Overview

Version	Date	Finding Count (9)			Downloads
None	2019-09-26 2015-01-15 2015-01-15 2015-01-15 2015-01-15 2015-01-15 2015-01-15 2015-01-15 2016-12-21 2016-12-21 2016-12-21 2016-12-21 2016-12-21 2016-12-21 2016-12-21 2019-03-26	CAT I (High): 0	CAT II (Med): 9	CAT III (Low): 0	Excel	JSON	XML

STIG Description
None

Available Profiles

Classified	Public	Sensitive
I - Mission Critical Classified	I - Mission Critical Public	I - Mission Critical Sensitive	II - Mission Support Classified	II - Mission Support Public	II - Mission Support Sensitive	III - Administrative Classified	III - Administrative Public	III - Administrative Sensitive

Findings (MAC III - Administrative Sensitive)

Finding ID	Severity	Title	Description
V-17072	Medium	CA 1 Tape Management TMC, AUDIT and optional RDS and VPD data sets will be properly protected.	CA 1 Tape Management TMC and AUDIT and optional data sets control the operations and access to the tape management system, and site specific information regarding tape volumes. Unauthorized...
V-22689	Medium	CA 1 Tape Management system password will be changed from the default.	CA 1 Tape Management default system password is common with all CA 1 systems. With this password, CA 1 tape processing can be deactivated. This could allow for unauthorized access to information...
V-17067	Medium	CA-1 Tape Management STC data sets must be properly protected.	CA-1 Tape Management STC data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result in...
V-17985	Medium	CA 1 Tape Management user exits, when in use, must be reviewed and/or approved.	CA-1 Tape Management user exits, TMSUXnA and TMSUXnS, provide the capability to bypass or modify existing ACP controls. A review and evaluation of exit code must be performed to ensure that the...
V-17982	Medium	CA 1 Tape Management function and password resources will be properly defined and protected.	CA 1 Tape Management can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the...
V-17452	Medium	CA 1 Tape Management Started Task name will be properly identified and/or defined to the system ACP.	CA 1 Tape Management requires a started task that will be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the system ACP, It...
V-18014	Medium	CA 1 Tape Management external security options must be specified properly.	CA 1 Tape Management offers multiple external security interfaces that are controlled by parameters specified in TMOOPT00. These interfaces provide security controls for several CA 1 system and...
V-17947	Medium	CA 1 Tape Management command resources will be properly defined and protected.	CA 1 Tape Management can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the...
V-16932	Medium	CA 1 Tape Management installation data sets must be properly protected.	CA 1 Tape Management installation data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result...