IBM Support

OA57925: STIG ZVTM0018 IS REPORTING NON-COMPLIANT DATA SETS

A fix is available

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • STIG ZVTM0018 is reporting non-compliant data sets. The
    datasets being reported as non-compliant are SYS1.SISTGDMO,
    SYS1.SISTASN1, and SYS1.SISTCMIP.  The UACC value is printed as
    blank (missing). This is caused by the fact that the as_dd
    newlist type didn't find a profile for this vtamlib data set
    even though it can be seen in other newlists.
    

Local fix

  • N/A
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED: Users of zSecure Audit exploiting the RACF   *
    *                 STIG compliance rule ZVTM0018.               *
    ****************************************************************
    * PROBLEM DESCRIPTION: The zSecure Audit STIG compliance rule  *
    *                      ZVTM0018 (VTAM system data sets) might  *
    *                      produce false non-compliant results.    *
    ****************************************************************
    * RECOMMENDATION: Apply the PTF provided and review the        *
    *                 documentation updates.                       *
    ****************************************************************
    The zSecure Audit STIG compliance rule ZVTM0018 (VTAM system
    data sets) produces false non-compliant results for data sets
    with undefined DSORG attribute.
    

Problem conclusion

  • zSecure Audit has been modified so that the RACF STIG compliance
    rule ZVTM0018 does not report data sets with undefined DSORG
    attribute as non-compliant.
    Please note the documentation changes as provided by the APAR
    tracking comment data.
    

Temporary fix

Comments

APAR Information

  • APAR number

    OA57925

  • Reported component name

    ZSEC BASE,ADMIN

  • Reported component ID

    5655T0100

  • Reported release

    231

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2019-07-10

  • Closed date

    2019-08-26

  • Last modified date

    2019-09-01

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UJ00619

Modules/Macros

  • C2R3FL0Y CKAGVT18 CKAIRULE CKRFDEF  CKRINLT  CKRINPO  CKROUFLD
    GKRFDEF  GKRINLT  GKRINPO  GKROUFLD
    

Fix information

  • Fixed component name

    ZSEC BASE,ADMIN

  • Fixed component ID

    5655T0100

Applicable component levels

  • R231 PSY UJ00619

       UP19/08/29 P F908

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"}, "Product":{"code":"SSCE68R","label":"zSecure Admin"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"231","Edition":""}]

Document Information

Modified date:
01 September 2019