Sample index member
*
* BMC AMI Security Policy Manager Rules
*
Defaults
Frequency 24 hours
Startup Yes
Priority 1
*---------------------------------------------------------------------------------*
Rule SAMP1
Frequency 24 hours
Category USE001
Reference S.1
Description Users must not have SPECIAL and AUDIT - Consider ROAUDIT
Rule SAMP2
Frequency 24 hours
Category SYS001
Reference S.2
Description IBMUSER must not have its default password
Rule SAMP3
Frequency 24 hours
Category SYS001
Reference S.3
Description No profile should be in WARN mode
Rule SAMP4
Frequency 24 hours
Category APF001
Reference S.4
Description Non authorized users who can update APF libraries
Rule SAMP5
Frequency 24 hours
Category APF001
Reference S.5
Description SETPROG command must be protected
Rule SAMP6
Frequency 24 hours
Category APF001
Reference S.6
Description CSVAPF.** must be defined to protect CSVAPF macro
* Allowlists
*
Allowlist TROUBLESHOOT
TSGAN Systems Analyst
Allowlist SYSPROG
TSGSP1 Sysprog1
TSGSP2 Sysprog2
Allowlist OPERATORS
TSGOP1 Operator1
TSGOP2 Operator2
* Network users (FTP
Allowlist NETWORK
TSGNW1 Network Op1
TSGNW2 Network Op2
* Data Center users (FTP
Allowlist DATACENTER
TSGDC1 User1
TSGDC2 User2
* Storage Administrators
Allowlist STORAGE
TSGSJ1
Storage Admin
* Production CICS region userids
Allowlist CICS
START2
* TWS Admin
Allowlist TWS
TSGTW1 TWS Admin
Allowlist FIREFIGHT
TSGFF1 Firefighter1
TSGFF2 Firefighter2
Allowlist UID0
TCPIP TCPIP Started Tasks
SSH SSH Started Task
FTPD FTP Started Task
Allowlist GID0
TCPIP TCPIP Started Tasks
SSH SSH Started Task
ZDETECT ZDETECT Started Task
* RACF Backup userid
Allowlist RACF_BACKUP
START2 General started task
*
*
* SPECAUD - Users allowed SPECIAL and AUDITOR
Allowlist SPECAUD
TSGSP1 RACFADM1
*
* BMC AMI Security Policy Manager Rules
*
Defaults
Frequency 24 hours
Startup Yes
Priority 1
*---------------------------------------------------------------------------------*
Rule SAMP1
Frequency 24 hours
Category USE001
Reference S.1
Description Users must not have SPECIAL and AUDIT - Consider ROAUDIT
Rule SAMP2
Frequency 24 hours
Category SYS001
Reference S.2
Description IBMUSER must not have its default password
Rule SAMP3
Frequency 24 hours
Category SYS001
Reference S.3
Description No profile should be in WARN mode
Rule SAMP4
Frequency 24 hours
Category APF001
Reference S.4
Description Non authorized users who can update APF libraries
Rule SAMP5
Frequency 24 hours
Category APF001
Reference S.5
Description SETPROG command must be protected
Rule SAMP6
Frequency 24 hours
Category APF001
Reference S.6
Description CSVAPF.** must be defined to protect CSVAPF macro
* Allowlists
*
Allowlist TROUBLESHOOT
TSGAN Systems Analyst
Allowlist SYSPROG
TSGSP1 Sysprog1
TSGSP2 Sysprog2
Allowlist OPERATORS
TSGOP1 Operator1
TSGOP2 Operator2
* Network users (FTP
Allowlist NETWORK
TSGNW1 Network Op1
TSGNW2 Network Op2
* Data Center users (FTP
Allowlist DATACENTER
TSGDC1 User1
TSGDC2 User2
* Storage Administrators
Allowlist STORAGE
TSGSJ1
Storage Admin
* Production CICS region userids
Allowlist CICS
START2
* TWS Admin
Allowlist TWS
TSGTW1 TWS Admin
Allowlist FIREFIGHT
TSGFF1 Firefighter1
TSGFF2 Firefighter2
Allowlist UID0
TCPIP TCPIP Started Tasks
SSH SSH Started Task
FTPD FTP Started Task
Allowlist GID0
TCPIP TCPIP Started Tasks
SSH SSH Started Task
ZDETECT ZDETECT Started Task
* RACF Backup userid
Allowlist RACF_BACKUP
START2 General started task
*
*
* SPECAUD - Users allowed SPECIAL and AUDITOR
Allowlist SPECAUD
TSGSP1 RACFADM1
*
Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*