Skip to content

III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

  • IDMS must restrict the use of code that provides elevated privileges to specific instances.

    <VulnDiscussion>When a user has elevated privileges, they may be able to deliberately or inadvertently make alterations to the DBMS structure...
    Rule Medium Severity
  • SRG-APP-000380-DB-000360

    <GroupDescription></GroupDescription>
    Group
  • CA IDMS programs that can be run through a CA IDMS CV must be defined to the CV.

    &lt;VulnDiscussion&gt;The ability to add programs to be executed under IDMS can be a problem if malicious programs are added. CA IDMS must prevent ...
    Rule Medium Severity
  • SRG-APP-000383-DB-000364

    <GroupDescription></GroupDescription>
    Group
  • IDMS terminal and lines that are not secure must be disabled.

    &lt;VulnDiscussion&gt;Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats.&lt;/VulnDiscussio...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules