Compuware Abend-AID external security options will be specified properly.

From z/OS Compuware Abend-AID for RACF STIG

Part of ZB000040

Associated with IA controls: ECCD-2, ECCD-1

Associated with: CCI-000035

SV-43205r1_rule Compuware Abend-AID external security options will be specified properly.

Vulnerability discussion

Compuware Abend-AID offers external security interfaces that are controlled by parameters specified in FDBDPARM DD statement of the started task procedures. These interfaces provide security controls for Abend-AID. Without proper controls to ensure that security is active, the integrity of the Compuware Abend-AID System and the confidentiality of data stored on the system may be compromised.

Check content

Refer to the contents data set specified in the FDBDPARM DD statement of the started task procedures. Automated Analysis Refer to the following report produced by the z/OS Data Collection: - PDI(ZAID0040) Ensure the following Compuware Abend-AID parameter is (are) specified in the data set specified in the FDBDPARM DD statement of the started task procedures. If the following guidance is true, this is not a finding. Parameter Value EXTERNAL_SECURITY_ENABLED YES

Fix text

The systems programmer/IAO will ensure that the Compuware Abend-AID parameter is (are) specified. Compuware Abend-AID security interfaces are controlled by parameters coded in the data set specified in the FDBDPARM DD statement of the started task procedures. Parameter Value EXTERNAL_SECURITY_ENABLED YES

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer