UCF STIG Viewer Logo

zOS WebsphereMQ for RACF STIG



Findings (MAC III - Administrative Sensitive)

Finding ID Severity Title
V-6958 High WebSphere MQ channel security must be implemented in accordance with security requirements.
V-6960 High WebSphere MQ switch profiles must be properly defined to the MQADMIN class.
V-6959 Medium WebSphere MQ resource classes are not properly actived for security checking by the ACP.
V-3903 Medium User timeout parameter values for WebSphere MQ queue managers are not specified in accordance with security requirements.
V-31561 Medium Production WebSphere MQ Remotes must utilize Certified Name Filters (CNF)
V-3904 Medium WebSphere MQ started tasks are not defined in accordance with the proper security requirements.
V-3905 Medium WebSphere MQ all update and alter access to MQSeries/WebSphere MQ product and system data sets are not properly restricted
V-6964 Medium WebSphere MQ dead letter and alias dead letter queues are not properly defined.
V-6962 Medium WebSphere MQ MQCONN Class (Connection) resource definitions must be protected in accordance with security.
V-6980 Medium WebSphere MQ channel security is not implemented in accordance with security requirements.
V-6973 Medium WebSphere MQ command resources defined to MQCMDS resource class are not protected in accordance with security requirements.
V-6965 Medium WebSphere MQ MQQUEUE (Queue) resource profiles defined to the MQQUEUE class are not protected in accordance with security requirements.
V-6966 Medium WebSphere MQ Process resource profiles defined in the MQPROC Class are not protected in accordance with security requirements.
V-6967 Medium WebSphere MQ Namelist resource profiles defined in the MQNLIST Class are not protected in accordance with security requirements.
V-6971 Medium WebSphere MQ context resources defined to the MQADMIN resource class are not protected in accordance with security requirements.
V-6975 Medium WebSphere MQ RESLEVEL resources in the MQADMIN resource class are not protected in accordance with security requirements.
V-6969 Medium WebSphere MQ Alternate User resources defined to MQADMIN resource class are not protected in accordance with security requirements.