STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM z/OS ACF2 Security Technical Implementation Guide

V-223475

CAT II (Medium)

CA-ACF2 RULEOPTS GSO record values must be set to the values specified.

Rule ID

SV-223475r991589_rule

STIG

IBM z/OS ACF2 Security Technical Implementation Guide

Version

V9R8

CCIs

CCI-000366CCI-000368

Discussion

Configuring the operating system to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements.

Check Content

From the ACF Command enter:
SET CONTROL(GSO)
LIST RULEOPTS

If the following options are defined, this is not a finding.

NO$NOSORT 
CENTRAL
CHANGE
DECOMP(AUDIT SECURITY) | DECOMP(AUDIT) | DECOMP(SECURITY)

The other RULEOPTS values should be assigned carefully as they affect the Rules and Infostorage databases.

Fix Text

Configure the GSO RULEOPTS record values to conform to the following requirements.

NO$NOSORT 
CENTRAL
CHANGE
DECOMP(AUDIT SECURITY) | DECOMP(AUDIT) | DECOMP(SECURITY)

The other RULEOPTS values should be assigned carefully as they affect the Rules and Infostorage databases.

Example:
SET C(GSO)
INSERT RULEOPTS NO$NOSORT CENTRAL CHANGE NOCOMPDYN DECOMP(AUDIT SECURITY)  
F ACF2,REFRESH(RULEOPTS)