STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM zVM Using CA VM:Secure Security Technical Implementation Guide

V-237897

CAT I (High)

CA VM:Secure product Rules Facility must be installed and operating.

Rule ID

SV-237897r858923_rule

STIG

IBM zVM Using CA VM:Secure Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-000015CCI-000213

Discussion

Enterprise environments make account management for operating systems challenging and complex. A manual process for account management functions adds the risk of a potential oversight or other errors. IBM z/VM requires an external security manager to assure proper account management. Satisfies: SRG-OS-000001-GPOS-00001, SRG-OS-000080-GPOS-00048

Check Content

Verify an "ACCESS RULE" record exists on the system using the following command:

VMSECURE CONFIG PRODUCT

If there is no "ACCESS RULE" record, this is a finding.

Verify that CA VM:SECURE RULES can be added using the following command:

VMSECURE RULES USER

If a rules file does not open, this is a finding.

Fix Text

Ensure the Rules Facility is installed and the Product Config file contains an "ACCESS RULES" statement.