UCF STIG Viewer Logo

zOS WebsphereMQ for ACF2 Security Technical Implementation Guide


Overview

Date Finding Count (17)
2021-12-14 CAT I (High): 2 CAT II (Med): 15 CAT III (Low): 0
STIG Description
This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Available Profiles



Findings (MAC III - Administrative Classified)

Finding ID Severity Title
V-224361 High Websphere MQ switch profiles must be properly defined to the MQADMIN class.
V-224354 High WebSphere MQ channel security must be implemented in accordance with security requirements.
V-224362 Medium WebSphere MQ MQCONN Class resources must be protected in accordance with security.
V-224363 Medium WebSphere MQ dead letter and alias dead letter queues are not properly defined.
V-224360 Medium WebSphere MQ resource classes are not properly activated.
V-224366 Medium WebSphere MQ Namelist resources are not protected in accordance with security requirements.
V-224359 Medium WebSphere MQ all update and alter access to MQSeries/WebSphere MQ product and system data sets are not properly restricted
V-224364 Medium WebSphere MQ queue resource defined to the MQQUEUE resource class are not protected in accordance with security requirements.
V-224358 Medium WebSphere MQ started tasks are not defined in accordance with the proper security requirements.
V-224357 Medium User timeout parameter values for WebSphere MQ queue managers are not specified in accordance with security requirements.
V-224356 Medium Production WebSphere MQ Remotes must utilize Certified Name Filters (CNF)
V-224355 Medium WebSphere MQ channel security is not implemented in accordance with security requirements.
V-224367 Medium WebSphere MQ alternate user resources defined to MQADMIN resource class are not protected in accordance with security requirements.
V-224368 Medium WebSphere MQ context resources defined to the MQADMIN resource class are not protected in accordance with security requirements.
V-224369 Medium WebSphere MQ command resources defined to MQCMDS resource class are not protected in accordance with security requirements.
V-224365 Medium WebSphere MQ Process resources are not protected in accordance with security requirements.
V-224370 Medium WebSphere MQ RESLEVEL resources in the MQADMIN resource class are not protected in accordance with security requirements.