V-17072 | Medium | CA 1 Tape Management TMC, AUDIT and optional RDS and VPD data sets will be properly protected. | CA 1 Tape Management TMC and AUDIT and optional data sets control the operations and access to the tape management system, and site specific information regarding tape volumes. Unauthorized... |
V-22689 | Medium | CA 1 Tape Management system password will be changed from the default. | CA 1 Tape Management default system password is common with all CA 1 systems. With this password, CA 1 tape processing can be deactivated. This could allow for unauthorized access to information... |
V-17985 | Medium | CA 1 Tape Management exits when in use will be reviewed and/or approved. | CA-1 Tape Management user exits, TMSUXnA and TMSUXnS, provide the capability to bypass or modify existing ACP controls. A review and evaluation of exit code must be performed to ensure that the... |
V-17982 | Medium | CA 1 Tape Management function and password resources will be properly defined and protected. | CA 1 Tape Management can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the... |
V-18011 | Medium | CA 1 Tape Management Resource Class will be defined or active in the ACP. | Failure to use a robust ACP to control a product could potentially compromise the integrity and availability of the MVS operating system and user data. |
V-17452 | Medium | CA 1 Tape Management Started Task name will be properly identified and/or defined to the system ACP. | CA 1 Tape Management requires a started task that will be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the system ACP, It... |
V-18014 | Medium | CA 1 Tape Management external security options will be specified properly. | CA 1 Tape Management offers multiple external security interfaces that are controlled by parameters specified in TMOOPT00. These interfaces provide security controls for several CA 1 system and... |
V-17454 | Medium | CA 1 Tape Management Started task will be properly defined to the STARTED resource class for RACF. | Access to product resources should be restricted to only those individuals responsible for the application connectivity and who have a requirement to access these resources. Improper control of... |
V-17947 | Medium | CA 1 Tape Management command resources will be properly defined and protected. | CA 1 Tape Management can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the... |
V-16932 | Medium | CA 1 Tape Management installation data sets will be properly protected. | CA 1 Tape Management installation data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result... |