U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vanguard Administrator and Analyzer z/OS RACF Checklist for completing an SRR audit manually (XML Version) 6.20 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
IBM OS390 cpe:/o:ibm:os_390 (View CVEs)
IBM RACF cpe:/a:ibm:racf (View CVEs)
IBM Z/OS Version 1, Release 9 cpe:/o:ibm:z%2fos:1.9 (View CVEs)
IBM z/OS Version 1 Release 10 cpe:/o:ibm:z%2fos:1.10 (View CVEs)
IBM z/OS Version 1 Release 11 cpe:/o:ibm:z%2fos:1.11 (View CVEs)
IBM z/OS Version 1 Release 12 cpe:/o:ibm:z%2fos:1.12 (View CVEs)
IBM z/OS Version 1 Release 13 cpe:/o:ibm:z%2fos (View CVEs)
IBM z/OS Version 2.1 cpe:/o:ibm:z%2fos:2.1.0 (View CVEs)

Checklist Highlights

Checklist Name:
Vanguard Administrator and Analyzer z/OS RACF Checklist for completing an SRR audit manually (XML Version)
Checklist ID:
506
Version:
6.20
Type:
Compliance
Review Status:
Archived
Authority:
Third Party: Vanguard Integrity Professionals, Inc.
Original Publication Date:
08/27/2014

Checklist Summary:

The purpose of this checklist is to provide z/OS environments utilizing the RACF security subsystem a method to execute a NIST/ DOD DISA STIG checklist against the z/OS RACF platform using Vanguard Administrator and Vanguard Analyzer. This checklist is a more time and labor intensive manual process as compared to the process available via the z/OS STIG RACF Checklist which uses the Vanguard Configuration Manager Product.

Checklist Role:

  • OS/390 Operating Platform
  • Add-on to OS/390 Operating Platform
  • Mainframe Operating System

Known Issues:

There are no known issues with this checklist. Should you find one, please email support@go2vanguard.com

Target Audience:

z/OS RACF Security Personnel with systems programming knowledge or the ability to find some of the target datasets on their system (PROCLIBs, Parmlibs, APF list, etc.).

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)
  • Legacy

Testing Information:

z/OS Versions 1.9, 1.10, 1.11, 1.12, 1.13 and 2.1

Regulatory Compliance:

Department of Defense (DOD) 8500

Comments/Warnings/Miscellaneous:

n/a

Disclaimer:

n/a

Product Support:

support@go2vanguard.com

Point of Contact:

brian.marshall@go2vanguard.com

Sponsor:

Vanguard Integrity Professionals, Inc.

Licensing:

Copyrighted, royalty free license to use.

Change History:

Version 6.16 - 04 October 2013
Made changes to be consistent with the DISA z/OS RACF Stigs version 6.8.  For a complete list of these changes please see the Instructions Document.
Modified to be consistent with V6.9 of DISA z/OS STIG Checklists for RACF
Updated to Version 6.10 of DISA STIGs
updated to 6.11
Checklists updated for DISA 6.16 STIGS release
Checklists updated in conjunction with DISA 6.17 release of the zOS RACF STIGS on Oct 26,2013
Updated to version 6.18
Updated to version DOD DISA STIG 6.19

Dependency/Requirements:

URL Description
http://iase.disa.mil/stigs/Pages/index.aspx DISA IASE STIGS homepage

References:

Reference URL Description

NIST checklist record last modified on 12/10/2014