STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to z/OS IBM System Display and Search Facility (SDSF) for ACF2 Security Technical Implementation Guide

V-224322

CAT II (Medium)

IBM System Display and Search Facility (SDSF) Resource Class will be defined or active in the ACP.

Rule ID

SV-224322r1141558_rule

STIG

z/OS IBM System Display and Search Facility (SDSF) for ACF2 Security Technical Implementation Guide

Version

V7R2

CCIs

CCI-000336CCI-002358

Discussion

Failure to use a robust ACP to control a product could potentially compromise the integrity and availability of the MVS operating system and user data.

Check Content

Refer to the following report produced by the ACF2 Data Collection:

- ACF2CMDS.RPT(ACFGSO).

If the following GSO CLASMAP record entry(ies) is (are) defined, this is not a finding.

CLASMAP.SDSF RESOURCE(SDSF) RSRCTYPE(xxx) ENTITYLN(nn)

Note: The site determines the appropriate three-letter RSRCTYPE that is unique for the SDSF. The ENTITYLN must be appropriate for the site's installation.

Fix Text

Use SAF security to define and protect the IBM SDSF resource class(es).

Use the following commands as an example:

CLASMAP.SDSF RESOURCE(SDSF) RSRCTYPE(SDF) ENTITYLN(39)