← Back to IBM zVM Using CA VM:Secure Security Technical Implementation Guide

V-237960

CAT II (Medium)

CA VM:Secure product CONFIG file must be restricted to appropriate personnel.

Rule ID

SV-237960r859056_rule

STIG

IBM zVM Using CA VM:Secure Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-000366

Discussion

Configuration settings are the set of parameters that can be changed in hardware, software, or firmware components of the system that affect the security posture and/or functionality of the system. Security-related parameters are those parameters impacting the security state of the system, including the parameters required to satisfy other security control requirements. Security-related parameters include, for example: registry settings; account, file, directory permission settings; and settings for functions, ports, protocols, services, and remote connections.

Check Content

Query the CA VM:Secure Product rules.

If there are product rules granting access to the disk on which the product "CONFIG" file resides for system administrators only, this is not a finding.

Fix Text

Create rules in the CA VM:Secure product Rules Facility that restricts access to the disk where the product "CONFIG" file resides to system administrators only.