An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Open sidebar
Navigate
Top
Search
Checks (
226
)
Print
Changes
Pages (
7/16
)
IBM z/OS ACF2 STIG
IBM z/OS ACF2 Security Technical Implementation Guide
v9 r6 (Released Oct. 1, 2025)
v9 r5 (Released July 2, 2025)
v9 r4 (Released April 2, 2025)
v9 r3 (Released Jan. 30, 2025)
v9 r2 (Released Oct. 24, 2024)
v9 r1 (Released July 24, 2024)
v8 r15 (Released April 24, 2024)
v8 r14 (Released Jan. 24, 2024)
v8 r13 (Released Oct. 25, 2023)
v8 r12 (Released July 26, 2023)
v8 r11 (Released April 27, 2023)
v8 r10 (Released Jan. 23, 2023)
v8 r9 (Released Nov. 23, 2022)
v8 r8 (Released Oct. 26, 2022)
v8 r7 (Released July 27, 2022)
v8 r6 (Released April 27, 2022)
v8 r5 (Released Jan. 27, 2022)
v8 r4 (Released Oct. 27, 2021)
v8 r3 (Released July 23, 2021)
v8 r2 (Released April 23, 2021)
v8 r1 (Released Oct. 23, 2020)
v7 r3 (Released July 24, 2020)
v7 r2 (Released April 24, 2020)
v7 r1 (Released Nov. 18, 2019)
v7 r0.1 (Released April 5, 2019)
ID
Vuln ID
Title
Cat
Status
ACF2-ES-000950
V-223512
ACF2 SECVOLS GSO record value must be set to VOLMASK(). Any local changes are justified and documented with the ISSO.
Cat II
ACF2-ES-000960
V-223513
ACF2 RESVOLS GSO record value must be set to Volmask(-). Any other setting requires documentation justifying the change.
Cat II
ACF2-ES-000970
V-223514
ACF2 security data sets and/or databases must be properly protected.
Cat I
ACF2-ES-000980
V-223515
ACF2 AUTOERAS GSO record value must be set to indicate that ACF2 is controlling the automatic physical erasure of VSAM or non VSAM data sets.
Cat II
ACF2-ES-000990
V-252705
IBM z/OS must enforce a minimum eight character password length.
Cat II
ACF2-FT-000010
V-223517
IBM z/OS SMF recording options for the FTP Server must be configured to write SMF records for all eligible events.
Cat II
ACF2-FT-000020
V-223518
IBM z/OS data sets for the FTP Server must be properly protected.
Cat II
ACF2-FT-000030
V-223519
IBM z/OS permission bits and user audit bits for HFS objects that are part of the FTP Server component must be properly configured.
Cat II
ACF2-FT-000040
V-223520
IBM z/OS FTP.DATA configuration statements must have a proper BANNER statement with the Standard Mandatory DoD Notice and Consent Banner.
Cat II
ACF2-FT-000060
V-223522
IBM z/OS FTP.DATA configuration statements for the FTP Server must specify the BANNER statement.
Cat II
ACF2-FT-000070
V-223523
IBM z/OS FTP Control cards must be properly stored in a secure PDS file.
Cat II
ACF2-FT-000080
V-223524
The IBM z/OS TFTP Server program must be properly protected.
Cat II
ACF2-FT-000090
V-223525
IBM z/OS FTP Server daemon must be defined with proper security parameters.
Cat II
ACF2-FT-000100
V-223526
IBM z/OS startup parameters for the FTP Server must be defined in the SYSTCPD and SYSFTPD DD statements for configuration files.
Cat II
ACF2-FT-000110
V-223527
IBM z/OS FTP.DATA configuration for the FTP Server must have INACTIVE statement properly set.
Cat II
Prev
1...
3
4
5
6
7
8
9
10
11
...16
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.