Check: ZMIM0040
z/OS CA MIM for ACF2 STIG:
ZMIM0040
(in versions v6 r4 through v6 r3)
Title
CA MIM Resource Sharing external security options must be specified properly. (Cat II impact)
Discussion
CA MIM Resource Sharing offers external security interfaces that are controlled by parameters specified in the MIMINIT member in the MIMPARMS DD statement of the started task procedures. These interfaces provide security controls for CA MIM. Without proper controls to ensure that security is active, the integrity of the CA MIM Resource Sharing System and the confidentiality of data stored on the system may be compromised.
Check Content
Refer to the contents of MIMINIT member of the data set(s) specified in the MIMPARMS DD statement of the started task procedures. Automated Analysis Refer to the following report produced by the z/OS Data Collection: - PDI(ZMIM0040) Ensure the following CA MIM Resource Sharing parameter(s) is (are) specified in the MIMINIT member of the data set(s) specified in the MIMPARMS DD statement of the started task procedures. If the following guidance is true, this is not a finding. Parameter Value SAFCMDAUTH ON
Fix Text
The systems programmer/IAO will ensure that the CA MIM Resource Sharing parameter(s) is (are) specified. CA MIM Resource Sharing security interfaces are controlled by parameters coded in the MIMINIT member of the data set(s) specified in the MIMPARMS DD statement of the started task procedures. Parameter Value SAFCMDAUTH ON
Additional Identifiers
Rule ID: SV-224274r519616_rule
Vulnerability ID: V-224274
Group Title: SRG-OS-000018
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000035 |
The information system provides the capability for privileged administrators to configure the organization-defined security policy filters to support different security policies. |
Controls
Number | Title |
---|---|
AC-4 (11) |
Configuration Of Security Policy Filters |