IBM z/VM system administrator must develop procedures to manually control temporary, interactive, and emergency accounts.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-237969 | SRG-OS-000480-GPOS-00227 | IBMZ-VM-002390 | SV-237969r649747_rule | 2022-08-31 | 2 |
| Description |
|---|
| Proper handling of temporary, inactive, and emergency accounts require automatic notification and action rather than at the convenience of the systems administrator. However in the absence of automated process manual procedures must be in place to assure that possible sensitive accounts are not compromised. |
| ℹ️ Check |
|---|
| Ask the system administrator (SA) for documented manual procedures to handle temporary, inactive, and emergency accounts. If there are no procedures or they are not documented and filed with the ISSM/ISSO, this is a finding. |
| ✔️ Fix |
|---|
| Develop a manual procedure to handle temporary, inactive, and emergency accounts in accordance with appropriate policies. Ensure that the procedures are documented and filed with ISSM/ISSO. |