I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
The zSecure programs CKFCOLL and CKGRACF, and the APF-authorized version of program CKRCARLA, must be restricted to security administrators, security batch jobs performing External Security Manager (ESM) maintenance, auditors, and systems programmers, and audited.
<VulnDiscussion>Users authorized to use the zSecure program CKFCOLL can collect z/OS system information that is not accessible to regular use...Rule Medium Severity -
SRG-APP-000379-MFP-000186
<GroupDescription></GroupDescription>Group -
IBM Security zSecure must implement organization-defined automated security responses if baseline zSecure configurations are changed in an unauthorized manner.
<VulnDiscussion>Unauthorized changes to the zSecure baseline configuration could make the system vulnerable to various attacks or allow unaut...Rule Medium Severity -
SRG-APP-000454-MFP-000343
<GroupDescription></GroupDescription>Group -
IBM Security zSecure must remove all upgraded/replaced zSecure software components that are no longer required for operation after updated versions have been installed.
<VulnDiscussion>Previous versions of zSecure products and components that are not removed from the information system after updates have been...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.