Navigate

Check: HMC0010

IBM Hardware Management Console (HMC) STIG: HMC0010 (in version v1 r5)

Title

The Hardware Management Console must be located in a secure location. (Cat I impact)

Discussion

The Hardware Management Console is used to perform Initial Program Load (IPLs) and control the Processor Resource/System Manager (PR/SM). If the Hardware Management Console is not located in a secure location, unauthorized personnel can bypass security, access the system, and alter the environment. This can lead to loss of secure operations if not corrected immediately.

Check Content

Verify the location of the Hardware Management Console. It should be located in a controlled area. Access to it should be restricted. If the Hardware Management Console is not located in a secure location this is a FINDING.

Fix Text

Move the Hardware Management Console to a secure location and implement access controls for authorized personnel.

Additional Identifiers

Rule ID: SV-29999r2_rule

Vulnerability ID: V-24345

Group Title: HMC0010

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-002916	The organization defines the physical access control systems/devices or guards that control ingress/egress to the facility where the information system resides.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
PE-3	Physical Access Control