An error occurred:

Check: IBMZ-VM-000010

IBM zVM STIG: IBMZ-VM-000010 (in version v1 r0.1)

Title

The IBM z/VM CA VM:Secure product Rules Facility must be installed and operating. (Cat I impact)

Discussion

Enterprise environments make account management for operating systems challenging and complex. A manual process for account management functions adds the risk of a potential oversight or other errors.

Check Content

Verify that an “ACCESS RULE” record exists on the system using the following command: CONFIGURE PRODUCT If there is no “ACCESS RULE” record, this is a finding. Verify that VM:SECURE RULES have been added using the following command: VMSECURE RULES USER If no rules appear, this is a finding.

Fix Text

Ensure the Rules Facility is installed and the Product Config file contains an “ACCESS RULES” statement.

Additional Identifiers

Rule ID:

Vulnerability ID: IBMZ-VM-000010

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000015

The organization employs automated mechanisms to support the information system account management functions.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-2 (1)

Automated System Account Management