OA67694: STIG CONTROLS ZCTD0040, ZCTO0040 & ZIOAR040 FAIL DUE TO MISSING INFORMATION.

A fix is available

APAR status

Closed as program error.

Error description

Multiple IOAENV records are created in the CKFREEZE, due to
multiple BMC environments being active.  STIG checks listed
fail, due to missing information in one of the environments.

Local fix

```
N/A
```

Problem summary

****************************************************************
* USERS AFFECTED: Users of zSecure Audit exploiting            *
*                 RACF/ACF2/TSS STIG compliance controls       *
*                 ZCTD0040, ZCTMR040, ZCTO0040, and ZIOAR040.  *
****************************************************************
* PROBLEM DESCRIPTION: zSecure Audit's RACF/ACF2/TSS STIG      *
*                      compliance controls ZCTD0040, ZCTMR040, *
*                      ZCTO0040, and ZIOAR040 might report     *
*                      incorrect non-compliant results.        *
****************************************************************
* RECOMMENDATION: Apply the PTF provided and review the        *
*                 documentation updates.                       *
****************************************************************
When the BMC CTSGATE product component is active, the zSecure
Audit's RACF/ACF2/TSS STIG compliance controls ZCTD0040,
ZCTMR040, ZCTO0040 (BMC Control-D/M/O configuration/parameter
values must be properly specified), and ZIOAR040 (BMC INCONTROL
IOA configuration/parameter values must be properly specified)
report non-compliant findings.

Problem conclusion

zSecure Audit has been modified, so that its RACF/ACF2/TSS STIG
compliance controls ZCTD0040, ZCTMR040, ZCTO0040, and ZIOAR040
do not report incorrect non-compliant findings in cases where
the BMC CTSGATE product component is active. Please note the
documentation changes as provided by the APAR tracking comment
data.

Temporary fix

Comments

APAR Information

APAR number
OA67694
Reported component name
ZSEC BASE,ADMIN
Reported component ID
5655T0100
Reported release
310
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2025-04-02
Closed date
2025-05-28
Last modified date
2025-07-02

APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:

UJ97262

Modules/Macros

C2R3IE1N C2R3IE1O C2R3IE1P C2R3IE1Q C2RHCD40 C2RHCO40 C2RHCO41
C2RIIECO CKA$INDX CKAFDEFA CKAHCM40 CKAHOA40 CKAOUIE  CKRINLT
CKTHCM40 GKRFDEFA GKRINLT  GKROUIE

Fix information

Fixed component name
ZSEC BASE,ADMIN
Fixed component ID
5655T0100

Applicable component levels

R310 PSY UJ97262
UP25/06/04 P F506

Fix is available

Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSPQTM","label":"IBM Security zSecure Admin"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"310","Line of Business":{"code":"LOB70","label":"Z TPS"}}]

Document Information

Modified date:
02 July 2025

Tips

OA67694: STIG CONTROLS ZCTD0040, ZCTO0040 & ZIOAR040 FAIL DUE TO MISSING INFORMATION.

A fix is available

Subscribe

APAR status

Closed as program error.

Error description

Local fix

Problem summary

Problem conclusion

Temporary fix

Comments

APAR Information

APAR number

Reported component name

Reported component ID

Reported release

Status

PE

HIPER

Special Attention

Submitted date

Closed date

Last modified date

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros

Fix information

Fixed component name

Fixed component ID

Applicable component levels

R310 PSY UJ97262

Fix is available

Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

Document Information

Share your feedback

Need support?