BMC CONTROL-M configuration/parameter values must be specified properly.

An XCCDF Rule

Description

<VulnDiscussion>BMC CONTROL-M configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified, security and operational controls may be weakened. This exposure may threaten the availability of the product applications, and compromise the confidentiality of customer data.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-224577r518796_rule
Severity: Medium
References: CCI-000035
Updated: 8 months ago

The BMC CONTROL-M Systems programmer will verify that any configuration/parameters that are required to control the security of the product are properly configured and syntactically correct.  Set the standard values for the BMC CONTROL-M security parameters for the specific ACP environment along with additional IOA security parameters with standard values as documented below.

Keyword	Value
DEFMCHKM	$$CTMEDM
SECTOLM	NO
DFMM01	EXTENDDFMM02	EXTEND
DFMM08	EXTEND
TSSJCARD	U
MSUBCHK	NO

BMC CONTROL-M configuration/parameter values must be specified properly.

Description

Remediation - Manual Procedure