Skip to content

III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

  • The IBM z/VM Portmapper server virtual machine userID must be included in the AUTOLOG statement of the TCP/IP server configuration file.

    <VulnDiscussion>Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. B...
    Rule Medium Severity
  • SRG-OS-000312-GPOS-00124

    <GroupDescription></GroupDescription>
    Group
  • CA VM:Secure product MANAGE command must be restricted to system administrators.

    &lt;VulnDiscussion&gt;Discretionary Access Control (DAC) is based on the notion that individual users are "owners" of objects and therefore have di...
    Rule Medium Severity
  • SRG-OS-000326-GPOS-00126

    <GroupDescription></GroupDescription>
    Group
  • The CA VM:Secure LOGONBY command must be restricted to system administrators.

    &lt;VulnDiscussion&gt;In certain situations, software applications/programs need to execute with elevated privileges to perform required functions....
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules