IBM Support

OA49264: STIG RACF0680 IS CHECKING RMM (TAPE) RESOURCES

A fix is available

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Profiles marked as being non-compliant are STGADMIN.EDG.**
    profiles, ie those protecting RMM (tape) resources, whichdon't
    really fall into the same category as the profiles mentioned in
    RACF0680, as these refer to DASD management.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED: Users of zSecure Audit exploiting STIG       *
    *                 compliance rule RACF0680.                    *
    ****************************************************************
    * PROBLEM DESCRIPTION: The zSecure Audit STIG compliance rule  *
    *                      RACF0680 might produce an incorrect     *
    *                      result.                                 *
    ****************************************************************
    * RECOMMENDATION: Apply the PTF provided.                      *
    ****************************************************************
    The zSecure Audit STIG rule RACF0680 (Storage management userids
    must be properly controlled) might report a non-compliance
    because this rule did not exclude non-DASD (RMM/tape) resources.
    

Problem conclusion

  • zSecure Audit has been modified so that STIG rule RACF0680
    excludes non-DASD resources from checking.
    211Y
    220Y
    CKAGR680
    

Temporary fix

Comments

APAR Information

  • APAR number

    OA49264

  • Reported component name

    AUDIT-R,A,T ACF

  • Reported component ID

    5655T0200

  • Reported release

    211

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2015-11-03

  • Closed date

    2015-12-16

  • Last modified date

    2016-01-04

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UA80132 UA80133

Modules/Macros

  •    CKAGR680
    

Fix information

  • Fixed component name

    ZSEC BASE,ADMIN

  • Fixed component ID

    5655T0100

Applicable component levels

  • R211 PSY UA80132

       UP15/12/17 P F512

  • R220 PSY UA80133

       UP15/12/17 P F512

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"}, "Product":{"code":"SSCE68R","label":"zSecure Admin"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"211","Edition":""}]

Document Information

Modified date:
04 January 2016