The IBM RACF REALDSN SETROPTS value must be specified.
An XCCDF Rule
Description
<VulnDiscussion>Without information that establishes the identity of the subjects (i.e., users or processes acting on behalf of users) associated with the events, security personnel cannot determine responsibility for the potentially harmful event.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-223700r991556_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Evaluate the impact associated with implementation of the control option. Configure control option as specified in the example below:
The RACF Command SETR LIST will show the status of RACF Controls including the value for the REALDSN Option.
REALDSN is ACTIVATED by issuing the command SETR REALDSN.