STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM z/OS ACF2 Security Technical Implementation Guide

V-223476

CAT II (Medium)

The CA-ACF2 GSO OPTS record value must be properly specified.

Rule ID

SV-223476r991589_rule

STIG

IBM z/OS ACF2 Security Technical Implementation Guide

Version

V9R8

CCIs

CCI-000366

Discussion

Configuring the operating system to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements.

Check Content

From the ACF Command enter:
SET CONTROL(GSO)
LIST OPTS

If the GSO OPTS record values conform to the following requirements, this is not a finding.

BLPLOG
NOCMDREC
CONSOLE(NOROLL)
CPUTIME(LOCAL)
DATE(MDY)
NODDB
DFTLID()
DFTSTC()
INFOLIST(none | AUDIT | SECURITY | SECURITY, AUDIT)
JOBCK
MAXVIO(10)
NOTIFY
RPTSCOPE
SHRDASD
STAMPSMF
STC
TAPEDSN
TEMPDSN
NOUADS
NOVTAMOPEN

Fix Text

Define the global options available to the system.

BLPLOG
NOCMDREC
CONSOLE(NOROLL)
CPUTIME(LOCAL)
DATE(MDY)
NODDB
DFTLID()
DFTSTC()
INFOLIST(none | AUDIT | SECURITY | SECURITY, AUDIT)
JOBCK
MAXVIO(10)
NOTIFY
RPTSCOPE
SHRDASD
STAMPSMF
STC
TAPEDSN
TEMPDSN
NOUADS
NOVTAMOPEN

Example:
SET C(GSO)
INSERT OPTS BLPLOG NOCMDREC CONSOLE(NOROLL) CPUTIME(LOCAL) DATE(MDY) NODDB DFTLID() DFTSTC() INFOLIST(SECURITY, AUDIT) JOBCK MAXVIO(10)
MODE(ABORT) NOTIFY RPTSCOPE SHRDASD STAMPSMF STC TAPEDSN TEMPDSN NOUADS NOVTAMOPEN

F ACF2,REFRESH(OPTS)