BMC IOA is not properly defined to the Facility Matrix Table for Top Secret.

An XCCDF Rule

Details
Profiles

Description

Improperly defined security controls for BMC IOA could result in the compromise of the network, operating system, and customer data.

ID: SV-224605r518955_rule
Version: ZIOAT036
Severity: Medium
References: CCI-000764
Updated: 7 days ago

Remediation Templates

The BMC IOA system programmer and the IAO will ensure that the TOP SECRET Facility Matrix Table is proper defined using the following example:

IOA:
FACILITY(USERxx=NAME=IOA,PGM=IOA,ID=nn,ACTIVE,SHRPRF)
FACILITY(IOA=ASUBM,NOABEND,MULTIUSER,NOXDEF)
FACILITY(IOA=LUMSG,STMSG,SIGN(S),NORNDPW)FACILITY(IOA=NOAUDIT,RES,WARNPW,NOTSOC)
FACILITY(IOA=MODE=FAIL,LOG(SMF,INIT,MSG,SEC9))
FACILITY(IOA=UIDACID=8,LOCKTIME=000)

BMC IOA is not properly defined to the Facility Matrix Table for Top Secret.

Description

Remediation Templates

A Manual Procedure