Check: IDMS-DB-000100
CA IDMS STIG:
IDMS-DB-000100
(in versions v1 r2 through v1 r1)
Title
All installation-delivered IDMS User-level programs must be properly secured. (Cat II impact)
Discussion
If user-level programs are not secured, then unauthorized users may use them to access and manipulate various resources within the DBMS. Satisfies: SRG-APP-000033-DB-000084, SRG-APP-000211-DB-000122
Check Content
The following are user-level batch programs that are executed using JCL rather than by the CV. As batch programs, they need to be secured by the external security manager (ESM) rather than through the SRTT. Validate the following suggested user-level programs are secured by the ESM: ADSBATCH ADSOBPLG CULPRIT IDMSBCF OLQBATCH OLQBNOTE Contact the security office to confirm that the programs in this list are secured. If the programs listed are not secured, this is a finding.
Fix Text
Contact the security office to confirm that the programs in this list are secured via the ESM and assigned to the appropriate users. Each program listed must be secured.
Additional Identifiers
Rule ID: SV-251590r807637_rule
Vulnerability ID: V-251590
Group Title: SRG-APP-000033-DB-000084
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000213 |
The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
| CCI-001082 |
The information system separates user functionality (including user interface services) from information system management functionality. |