IBM Support

OA62010: COMPLIANCE COMPARISON VALUE IS UPPER CASE INSTEAD OF LOWER CASE FOR STIG RULE ZUSS0012

A fix is available

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Compliance comparison value is upper case instead of lower case
    for STIG Rule ZUSS0012
    
    The Compliance test shows the following with the Compliance
    comparison value showing upper case instead of lower case
    
    
    Test definition
    Test name                     1.STEPLIBLIST
    Test lookup base field name
    Test field name               STEPLIBLIST
    Relational operator           =
    Compliance comparison value   /ETC/STEPLIB
    Test type n/a,(non-)compliant compliant
    

Local fix

  • N/A
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED: Users of zSecure Audit exploiting STIG       *
    *                 compliance rule sets ZUSS0012, ZUSS0044,     *
    *                 ZUSS0045, and ZUSS0047.                      *
    ****************************************************************
    * PROBLEM DESCRIPTION: zSecure Audit STIG compliance rule sets *
    *                      ZUSS0012, ZUSS0044, ZUSS0045, and       *
    *                      ZUSS0047 use case insensitive           *
    *                      selections which might result in        *
    *                      incorrect compliance reporting.         *
    ****************************************************************
    * RECOMMENDATION: Apply the PTF provided.                      *
    ****************************************************************
    The following STIG compliance rule sets might display incorrect
    results:
    
     - ZUSS0012: The z/OS UNIX BPXPRMxx security parameter values
                 must be properly specified.
     - ZUSS0044: The user account for the z/OS UNIX (BPXROOT) must
                 be properly defined.
     - ZUSS0045: The user account for the z/OS UNIX (RMFGAT) must be
                 properly defined.
     - ZUSS0047: z/OS UNIX user accounts must be properly defined.
    

Problem conclusion

  • zSecure Audit has been modified so that STIG compliance rule
    sets ZUSS0012, ZUSS0044, ZUSS0045, and ZUSS0047 use case
    sensitive selections.
    

Temporary fix

Comments

  • ×**** PE21/09/15 FIX IN ERROR. SEE APAR OA62117  FOR DESCRIPTION
    

APAR Information

  • APAR number

    OA62010

  • Reported component name

    AUDIT-R,A,T ACF

  • Reported component ID

    5655T0200

  • Reported release

    240

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2021-08-30

  • Closed date

    2021-09-13

  • Last modified date

    2021-10-01

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UJ06611

Modules/Macros

  • C2RG@DEF C2RGZU12 CKAGZU44 CKAGZU45 CKAGZU47
    

Fix information

  • Fixed component name

    ZSEC BASE,ADMIN

  • Fixed component ID

    5655T0100

Applicable component levels

  • R240 PSY UJ06611

       UP21/10/01 P F109

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSPQTM","label":"IBM Security zSecure Admin"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"240"}]

Document Information

Modified date:
02 October 2021