II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000018
Group -
BMC CONTROL-M security exits are not installed or configured properly.
The BMC CONTROL-M security exits enable access authorization checking to BMC CONTROL-M commands, features, and online functionality. If these exit(s) is (are) not in place, activities by unauthoriz...Rule Medium Severity -
SRG-OS-000080
Group -
BMC CONTROL-M installation data sets will be properly protected.
BMC CONTROL-M installation data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result in violat...Rule Medium Severity -
SRG-OS-000259
Group -
BMC CONTROL-M STC data sets will be properly protected.
BMC CONTROL-M STC data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result in violating the i...Rule Medium Severity -
SRG-OS-000080
Group -
BMC CONTROL-M User data sets will be properly protected.
BMC CONTROL-M User data sets, Repository, have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result in v...Rule Medium Severity -
SRG-OS-000018
Group -
BMC CONTROL-M User/Application JCL data sets must be properly protected.
BMC CONTROL-M User/Application JCL data sets have the ability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to these data sets could result i...Rule Medium Severity -
SRG-OS-000018
Group -
BMC C0NTROL-M resources must be properly defined and protected.
BMC CONTROL-M can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the compromise of the...Rule Medium Severity -
SRG-OS-000104
Group -
BMC CONTROL-M Started Task name is not properly identified / defined to the system ACP.
BMC CONTROL-M requires a started task that will be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the system ACP, It allows the AC...Rule Medium Severity -
SRG-OS-000104
Group -
BMC CONTROL-M Started task(s) must be properly defined to the STARTED resource class for RACF.
Access to product resources should be restricted to only those individuals responsible for the application connectivity and who have a requirement to access these resources. Improper control of pr...Rule Medium Severity -
SRG-OS-000018
Group -
BMC CONTROL-M configuration/parameter values must be specified properly.
BMC CONTROL-M configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified, security and operational controls may be...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.