Skip to content

CA IDMS Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000033-DB-000084

    <GroupDescription></GroupDescription>
    Group
  • IDMS must allow only authorized users to sign on to an IDMS CV.

    &lt;VulnDiscussion&gt;Unauthorized users signing on to IDMS can pose varying amounts of risk depending upon the security of the IDMS resources in a...
    Rule High Severity
  • SRG-APP-000033-DB-000084

    <GroupDescription></GroupDescription>
    Group
  • IDMS must enforce applicable access control policies, even after a user successfully signs on to CV.

    &lt;VulnDiscussion&gt;Unless the DBMS is secured properly, there are innumerable ways that a system and its data can be compromised. The IDMS SRTT ...
    Rule High Severity
  • IDMS must protect against the use of external request exits that change the userid to a shared id when actions are performed that may be audited.

    &lt;VulnDiscussion&gt;Non-repudiation of actions taken is required in order to maintain data integrity. Examples of particular actions taken by ind...
    Rule Low Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules