National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vanguard Configuration Manager z/OS RACF Checklist for completing an automated SRR Audit for Stig version 6.31 2.2 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
IBM OS390 cpe:/o:ibm:os_390 (View CVEs)
IBM RACF cpe:/a:ibm:racf (View CVEs)
IBM z/OS Version 1 Release 10 cpe:/o:ibm:z%2fos:1.10 (View CVEs)
IBM z/OS Version 1 Release 11 cpe:/o:ibm:z%2fos:1.11 (View CVEs)
IBM z/OS Version 1 Release 12 cpe:/o:ibm:z%2fos:1.12 (View CVEs)
IBM Z/OS Version 1, Release 9 cpe:/o:ibm:z%2fos:1.9 (View CVEs)
IBM z/OS Version 1 Release 13 cpe:/o:ibm:z%2fos (View CVEs)
IBM z/OS Version 2, Release 1 cpe:/o:ibm:z%2fos:2.1 (View CVEs)

Checklist Highlights

Checklist Name:
Vanguard Configuration Manager z/OS RACF Checklist for completing an automated SRR Audit for Stig version 6.31
Checklist ID:
770
Version:
2.2
Type:
Compliance
Review Status:
Final
Authority:
Third Party: Vanguard Integrity Professionals, Inc.
Original Publication Date:
05/25/2017

Checklist Summary:

The purpose of this checklist is to provide z/OS environments utilizing the RACF security subsystem a method to execute a DOD DISA STIG checklist against the z/OS RACF platform using the Vanguard Configuration Manager product, a fully automated configuration scanner.

Checklist Role:

  • Operating System
  • OS/390 Operating Platform
  • Add-on to OS/390 Operating Platform
  • Mainframe Operating System

Known Issues:

None.

Target Audience:

z/OS RACF Security Personnel with systems programming knowledge or the ability to find some of the target datasets on their system (PROCLIBs, Parmlibs, APF list, etc).

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)
  • Legacy

Testing Information:

z/OS 1.10, 1.11, 1.12,1.13, 2.1,2.2

Regulatory Compliance:

Department of Defense [DoD] 8500

Comments/Warnings/Miscellaneous:

n/a

Disclaimer:

n/a

Product Support:

Vendor will accept support calls

Point of Contact:

customer.support@go2vanguard.com

Sponsor:

Vanguard Integrity Professionals, Inc.

Licensing:

Copyrighted, royalty free license to use.

Change History:

Updated to version 6.19 of DOD DISA Stigs.
added suppotrt for DOD DISA STIGs 6.20
Updated to 6.21 of DISA STIGS
Changed Status from "Under Review" to "Final" - 18 February 2015
Update to 6.25
Changed status from "Under Review" to "Final" - 30 December 2015
Updated to version 6.31
Updated to FINAL - 07/13/2017
null

Dependency/Requirements:

URL Description
http://iase.disa.mil/stigs/os/mainframe/z_os.html DOD DISA STIGS for Mainframe

References:

Reference URL Description

NIST checklist record last modified on 07/13/2017