| V-224523 | Medium | Quest NC-Pass installation data sets will be properly protected. | Quest NC-Pass installation data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result in... |
| V-224524 | Medium | Quest NC-Pass STC data sets will be properly protected. | Quest NC-Pass STC data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result in violating the... |
| V-224525 | Medium | Quest NC-Pass will be used by Highly-Sensitive users. | DISA has directed that Quest NC-Pass extended authentication be implemented on all domains. All users with update and alter access to sensitive system-level data sets and resources, or who possess... |
| V-224526 | Medium | Quest NC-Pass Started Task name will be properly identified and/or defined to the system ACP. | Quest NC-Pass requires a started task that will be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the system ACP, It allows the... |
| V-224527 | Medium | Quest NC-Pass Started task will be properly defined to the STARTED resource class for RACF. | Access to product resources should be restricted to only those individuals responsible for the application connectivity and who have a requirement to access these resources. Improper control of... |
