z/OS IBM CICS Transaction Server for RACF Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
CICS default logonid(s) must be defined and/or controlled in accordance with the security requirements.
<VulnDiscussion>CICS is a transaction-processing product that provides programmers with the facilities to develop interactive applications. A...Rule Medium Severity -
SRG-OS-000029
<GroupDescription></GroupDescription>Group -
CICS logonid(s) must have time-out limit set to 15 minutes.
<VulnDiscussion>CICS is a transaction-processing product that provides programmers with the facilities to develop interactive applications. I...Rule Medium Severity -
External RACF Classes are not active for CICS transaction checking.
<VulnDiscussion>Implement CICS transaction security by utilizing two distinct and unique RACF resource classes (i.e., member and grouping) wi...Rule Medium Severity -
SRG-OS-000080
<GroupDescription></GroupDescription>Group -
CICS regions are improperly protected to prevent unauthorized propagation of the region userid.
<VulnDiscussion>CICS is a transaction-processing product that provides programmers with the facilities to develop interactive applications. I...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules