IBM RACF exit ICHPWX01 must be installed and properly configured.
An XCCDF Rule
Description
<VulnDiscussion>Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. Satisfies: SRG-OS-000070-GPOS-00038, SRG-OS-000071-GPOS-00039, SRG-OS-000072-GPOS-00040, SRG-OS-000266-GPOS-00101, SRG-OS-000480-GPOS-00225</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-223725r868820_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Evaluate the impact associated with implementation of the control option. Develop a plan of action to implement the control option as specified in the example below:
For z/OS release 1.12 through z/OS release 2.1 APARs OA43998 and OA43999 must be applied.
Install exit IRRPWREX according to the following guidelines:
REXX Parameter Setting