Skip to content

zOS FEP for ACF2 STIG

Rules, Groups, and Values defined within the XCCDF Benchmark

  • ZFEP0011

    <GroupDescription></GroupDescription>
    Group
  • All hardware components of the FEPs are not placed in secure locations where they cannot be stolen, damaged, or disturbed

    &lt;VulnDiscussion&gt;If components of the FEPs are not properly protected they can be stolen, damaged, or disturbed. Without adequate physical se...
    Rule Medium Severity
  • ZFEP0012

    <GroupDescription></GroupDescription>
    Group
  • Procedures are not in place to restrict access to FEP functions of the service subsystem from operator consoles (local and/or remote), and to restrict access to the diskette drive of the service subsystem.

    &lt;VulnDiscussion&gt;If components of the FEPs are not properly protected they can be stolen, damaged, or disturbed. Without adequate physical se...
    Rule Medium Severity
  • ZFEP0013

    <GroupDescription></GroupDescription>
    Group
  • A documented procedure is not available instructing how to load and dump the FEP NCP (Network Control Program).

    &lt;VulnDiscussion&gt;If components of the FEPs are not properly protected they can be stolen, damaged, or disturbed. Without adequate physical se...
    Rule Medium Severity
  • ZFEP0014

    <GroupDescription></GroupDescription>
    Group
  • An active log is not available to keep track of all hardware upgrades and software changes made to the FEP (Front End Processor).

    &lt;VulnDiscussion&gt;If components of the FEPs are not properly protected they can be stolen, damaged, or disturbed. Without adequate physical se...
    Rule Medium Severity
  • ZFEP0015

    <GroupDescription></GroupDescription>
    Group
  • NCP (Net Work Control Program) Data set access authorization does not restricts UPDATE and/or ALLOCATE access to appropriate personnel.

    &lt;VulnDiscussion&gt;If components of the FEPs are not properly protected they can be stolen, damaged, or disturbed. Without adequate physical se...
    Rule Medium Severity
  • ZFEP0016

    <GroupDescription></GroupDescription>
    Group
  • A password control is not in place to restrict access to the service subsystem via the operator consoles (local and/or remote) and a key-lock switch is not used to protect the modem supporting the remote console of the service subsystem.

    &lt;VulnDiscussion&gt;If components of the FEPs are not properly protected they can be stolen, damaged, or disturbed. Without adequate physical se...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules