An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Open sidebar
Navigate
Top
Search
Checks (
226
)
Print
Changes
Pages (
6/16
)
IBM z/OS ACF2 STIG
IBM z/OS ACF2 Security Technical Implementation Guide
v9 r6 (Released Oct. 1, 2025)
v9 r5 (Released July 2, 2025)
v9 r4 (Released April 2, 2025)
v9 r3 (Released Jan. 30, 2025)
v9 r2 (Released Oct. 24, 2024)
v9 r1 (Released July 24, 2024)
v8 r15 (Released April 24, 2024)
v8 r14 (Released Jan. 24, 2024)
v8 r13 (Released Oct. 25, 2023)
v8 r12 (Released July 26, 2023)
v8 r11 (Released April 27, 2023)
v8 r10 (Released Jan. 23, 2023)
v8 r9 (Released Nov. 23, 2022)
v8 r8 (Released Oct. 26, 2022)
v8 r7 (Released July 27, 2022)
v8 r6 (Released April 27, 2022)
v8 r5 (Released Jan. 27, 2022)
v8 r4 (Released Oct. 27, 2021)
v8 r3 (Released July 23, 2021)
v8 r2 (Released April 23, 2021)
v8 r1 (Released Oct. 23, 2020)
v7 r3 (Released July 24, 2020)
v7 r2 (Released April 24, 2020)
v7 r1 (Released Nov. 18, 2019)
v7 r0.1 (Released April 5, 2019)
ID
Vuln ID
Title
Cat
Status
ACF2-ES-000790
V-223497
CA-ACF2 defined user accounts must uniquely identify system users.
Cat II
ACF2-ES-000800
V-223498
CA-ACF2 userids found inactive for more than 35 days must be suspended.
Cat II
ACF2-ES-000810
V-223499
CA-ACF2 PWPHRASE GSO record must be properly defined.
Cat II
ACF2-ES-000820
V-223500
CA-ACF2 must enforce password complexity by requiring that at least one special character be used.
Cat II
ACF2-ES-000840
V-223501
ACF2 PSWD GSO record value must be set to require at least one uppercase character be used.
Cat II
ACF2-ES-000850
V-223502
ACF2 PSWD GSO record value must be set to require at least one numeric character be used.
Cat II
ACF2-ES-000860
V-223503
ACF2 PSWD GSO record value must be set to require at least one lowercase character be used.
Cat II
ACF2-ES-000870
V-223504
ACF2 PSWD GSO record value must be set to require the change of at least 50 percent of the total number of characters when passwords are changed.
Cat II
ACF2-ES-000880
V-223505
ACF2 must use NIST FIPS-validated cryptography to protect passwords in the security database.
Cat I
ACF2-ES-000890
V-223506
ACF2 PSWD GSO record value must be set to require a 60-day maximum password lifetime restriction.
Cat II
ACF2-ES-000900
V-223507
ACF2 PSWD GSO record value must be set to require 24 hours/one day as the minimum password lifetime.
Cat II
ACF2-ES-000910
V-223508
ACF2 PSWD GSO record value must be set to prohibit password reuse for a minimum of five generations or more.
Cat II
ACF2-ES-000920
V-223509
ACF2 TSOTWX GSO record values must be set to obliterate the logon password on TWX devices.
Cat II
ACF2-ES-000930
V-223510
ACF2 TSOCRT GSO record values must be set to obliterate the logon to ASCII CRT devices.
Cat II
ACF2-ES-000940
V-223511
ACF2 TSO2741 GSO record values must be set to obliterate the logon password on 2741 devices.
Cat II
Prev
1...
2
3
4
5
6
7
8
9
10
...16
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.