| The IAO will work with the systems programmer to verify that the following are properly specified in the ACP. |
(Note: The resource type, resources, and/or resource prefixes identified below are examples of a possible installation. The actual resource type, resources, and/or resource prefixes are determined when the product is actually installed on a system through the product’s installation guide and can be site specific.)
Ensure that all Catalog Solutions resources and/or generic equivalent are properly protected according to the requirements specified in Catalog Solutions Resources table in the z/OS STIG Addendum.
Use Catalog Solutions Resources table in the z/OS STIG Addendum. This table lists the resources, access requirements, and logging requirements for Catalogued Solutions. Ensure the following guidelines are followed:
The ACF2 resources are defined with a default access of PREVENT.
The ACF2 resource access authorizations restrict access to the appropriate personnel.
The ACF2 resource logging is correctly specified.
The following commands are provided as a sample for implementing resource controls:
hlq2.GLOBAL.DATASET UID(dasdaudt) LOG
hlq2.GLOBAL.DATASET UID(dasbaudt) LOG
hlq2.GLOBAL.DATASET UID(syspaudt) LOG
hlq2.GLOBAL.DATASET UID(*) PREVENT
- UID(*) PREVENT