An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Open sidebar
Navigate
Top
Search
Checks (
226
)
Print
Changes
Pages (
2/16
)
IBM z/OS ACF2 STIG
IBM z/OS ACF2 Security Technical Implementation Guide
v9 r6 (Released Oct. 1, 2025)
v9 r5 (Released July 2, 2025)
v9 r4 (Released April 2, 2025)
v9 r3 (Released Jan. 30, 2025)
v9 r2 (Released Oct. 24, 2024)
v9 r1 (Released July 24, 2024)
v8 r15 (Released April 24, 2024)
v8 r14 (Released Jan. 24, 2024)
v8 r13 (Released Oct. 25, 2023)
v8 r12 (Released July 26, 2023)
v8 r11 (Released April 27, 2023)
v8 r10 (Released Jan. 23, 2023)
v8 r9 (Released Nov. 23, 2022)
v8 r8 (Released Oct. 26, 2022)
v8 r7 (Released July 27, 2022)
v8 r6 (Released April 27, 2022)
v8 r5 (Released Jan. 27, 2022)
v8 r4 (Released Oct. 27, 2021)
v8 r3 (Released July 23, 2021)
v8 r2 (Released April 23, 2021)
v8 r1 (Released Oct. 23, 2020)
v7 r3 (Released July 24, 2020)
v7 r2 (Released April 24, 2020)
v7 r1 (Released Nov. 18, 2019)
v7 r0.1 (Released April 5, 2019)
ID
Vuln ID
Title
Cat
Status
ACF2-ES-000140
V-223435
CA-ACF2 allocate access to system user catalogs must be properly protected.
Cat II
ACF2-ES-000150
V-223436
ACF2 Classes required to properly security the z/OS UNIX environment must be ACTIVE.
Cat II
ACF2-ES-000160
V-223437
Access to IBM z/OS special privilege TAPE-LBL or TAPE-BLP must be limited and/or justified.
Cat II
ACF2-ES-000170
V-223438
CA-ACF2 must limit access to System page data sets (i.e., PLPA, COMMON, and LOCALx) to system programmers.
Cat II
ACF2-ES-000180
V-223439
IBM z/OS must protect dynamic lists in accordance with proper security requirements.
Cat I
ACF2-ES-000190
V-223440
IBM z/OS Libraries included in the system REXXLIB concatenation must be properly protected.
Cat I
ACF2-ES-000200
V-223441
CA-ACF2 must limit Write or greater access to SYS1.UADS To system programmers only and read and update access must be limited to system programmer personnel and/or security personnel.
Cat I
ACF2-ES-000210
V-223442
CA-ACF2 must limit all system PROCLIB data sets to appropriate authorized users.
Cat I
ACF2-ES-000220
V-223443
CA-ACF2 access to the System Master Catalog must be properly protected.
Cat I
ACF2-ES-000230
V-223444
IBM z/OS MCS consoles access authorization(s) for CONSOLE resource(s) must be properly protected.
Cat II
ACF2-ES-000240
V-223445
CA-ACF2 must limit Write or greater access to SYS1.NUCLEUS to system programmers only.
Cat I
ACF2-ES-000250
V-223446
CA-ACF2 must limit Write or greater access to SYS1.LPALIB to system programmers only.
Cat I
ACF2-ES-000260
V-223447
CA-ACF2 must limit Write or greater access to SYS1.IMAGELIB to system programmers.
Cat I
ACF2-ES-000270
V-223448
CA-ACF2 must limit Write or greater access to Libraries containing EXIT modules to system programmers only.
Cat I
ACF2-ES-000280
V-223449
CA-ACF2 must limit Write and Allocate access to all APF-authorized libraries to system programmers only.
Cat I
Prev
1
2
3
4
5
6
...16
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.