An error occurred:

Check: RACF-OS-000450

IBM z/OS RACF STIG: RACF-OS-000450 (in versions v8 r14 through v7 r1)

Title

IBM z/OS system administrator must develop a procedure to remove or disable emergency accounts after the crisis is resolved or 72 hours. (Cat II impact)

Discussion

IBM z/OS system administrator must develop a procedure to remove or disable emergency accounts after the crisis is resolved or 72 hours.

Check Content

Ask the system administrator for the procedure to automatically remove or disable emergency accounts after the crisis is resolved or 72 hours. If there is no procedure, this is a finding.

Fix Text

Develop a procedure to remove or disable emergency user accounts after the crisis is resolved or 72 hours.

Additional Identifiers

Rule ID: SV-223799r604139_rule

Vulnerability ID: V-223799

Group Title: SRG-OS-000123-GPOS-00064

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001682

The information system automatically removes or disables emergency accounts after an organization-defined time period for each type of account.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-2 (2)

Removal Of Temporary / Emergency Accounts