IBM RACF must define WARN = NO on all profiles.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| high | V-223703 | SRG-OS-000480-GPOS-00229 | RACF-ES-000560 | SV-223703r991591_rule | 2025-03-11 | 9 |
| Description |
|---|
| Failure to restrict system access to authenticated users negatively impacts operating system security. |
| ℹ️ Check |
|---|
| Review all Dataset and resource profiles in the RACF database. If any are not defined with WARN = NO, this is a finding. |
| ✔️ Fix |
|---|
| Define each dataset and resource profile with WARN = NO |