Compuware Abend-AID external security options must be specified properly.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-18014 | ZAID0040 | SV-43205r2_rule | Medium |
| Description |
|---|
| Compuware Abend-AID offers external security interfaces that are controlled by parameters specified in FDBDPARM DD statement of the started task procedures. These interfaces provide security controls for Abend-AID. Without proper controls to ensure that security is active, the integrity of the Compuware Abend-AID System and the confidentiality of data stored on the system may be compromised. |
| STIG | Date |
|---|---|
| z/OS Compuware Abend-AID for ACF2 STIG | 2018-07-06 |
Details
| Check Text ( C-41182r2_chk ) |
|---|
| Examine the Enterprise Common Components (ECC) started task procedure. (This can usually be found in the system PROCLIBs). Refer to the contents of the data set specified in the CWPARM DD statement. Automated Analysis Refer to the following report produced by the z/OS Data Collection: - PDI(ZAID0040) Review the Member name listed. If the following is specified for each component, this is not a finding. Member Name: AABD00 - Abend-AID batch dump capture address space EXTERNAL_SECURITY_ENABLED=YES Member Name: AATD00 - Abend-AID CICS Transaction Dump Capture Address Space EXTERNAL_SECURITY_ENABLED=YES Member Name: AAVW00 - Abend-AID viewing server EXTERNAL_SECURITY_ENABLED=YES |
| Fix Text (F-36738r2_fix) |
|---|
| In the data set specified in the CWPARM DD statement from the ECC started task procedure, specify the parameter values for each component in the respective members as follows: Member Name: AABD00 - Abend-AID batch dump capture address space EXTERNAL_SECURITY_ENABLED=YES Member Name: AATD00 - Abend-AID CICS Transaction Dump Capture Address Space EXTERNAL_SECURITY_ENABLED=YES Member Name: AAVW00 - Abend-AID viewing server EXTERNAL_SECURITY_ENABLED=YES |