STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM z/OS ACF2 Security Technical Implementation Guide

V-223469

CAT II (Medium)

IBM z/OS TSO GSO record values must be set to the values specified.

Rule ID

SV-223469r991589_rule

STIG

IBM z/OS ACF2 Security Technical Implementation Guide

Version

V9R8

CCIs

CCI-000366CCI-001133

Discussion

Configuring the operating system to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements.

Check Content

From the ACF Command screen enter:
SET CONTROL(GSO)
LIST TSO

If the GSO TSO record values conform to the following requirements, this is not a finding.

ACCOUNT(1)
BYPASS(#)
CHAR(BS)
CMDLIST()
NOIKJEFLD1
LINE(ATTN)
LOGONCK
PERFORM(0)
PROC(site defined)
NOQLOGON
REGION(site defined)
SUBCLSS()
SUBHOLD()
SUBMSG()
TIME(0)
TSOSOUT(A)
UNIT(SYSDA)
WAITIME(1-60)

Fix Text

Configure the GSO TSO record values to conform to the following requirements.

ACCOUNT(1)
BYPASS(#)
CHAR(BS)
CMDLIST()
NOIKJEFLD1
LINE(ATTN)
LOGONCK
PERFORM(0)
PROC(site defined)
NOQLOGON
REGION(site defined)
SUBCLSS()
SUBHOLD()
SUBMSGC()
TIME(0)
TSOSOUT(A)
UNIT(SYSDA)
WAITIME(1-60)

Example:
SET C(GSO)
INSERT TSO ACCOUNT(1) BYPASS(#) CHAR(BS) CMDLIST() NOIKJEFLD1 LINE(ATTN) LOGONCK PERFORM(0) PROC(IKJACCNT) NOQLOGON REGION(4,096) SUBCLSS() SUBHOLD() SUBMSGC() TIME(0) TSOGNAME() TSOSOUT(A) UNIT(SYSDA) WAITIME(60) 

F ACF2,REFRESH(TSO)