The IBM z/VM JOURNALING statement must be properly configured.
An XCCDF Rule
Description
By limiting the number of failed logon attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute-forcing, is reduced. Limits are imposed by locking the account.
- ID
- SV-237944r859014_rule
- Version
- IBMZ-VM-001020
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Configure the system config "JOURNALING" statement to include the following:
Logon,
Account after 3 attempts,
See IBMZ-VM-000040 for LOCKOUT setting.