IBM OS/400 Asset Protection Standards:: Difference between revisions

From HORSE - Holistic Operational Readiness Security Evaluation.
Jump to navigation Jump to search
No edit summary
 
No edit summary
 
Line 1: Line 1:
System Console
===System Console===
QCONSOLE value is: DSP03: Console name. This value is set by the system administrator. It is recommended that the system be located in a physically secure location.
'''QCONSOLE''' value is: DSP03: Console name. This value is set by the system administrator. It is recommended that the system be located in a physically secure location.<br>


Dedicated Service Tools
===Dedicated Service Tools===


===Security Level===
'''QSECURITY''' value is: 40, Default value is: 10, System security level. It is recommended that a level of no less than 30 be used.<br>


Security Level
===Allow User Domain Objects===
QSECURITY value is: 40, Default value is: 10, System security level. It is recommended that a level of no less than 30 be used.
'''QALWUSRDMN''' value is: *ALL, Default value is: *ALL: Allow user domain objects in any library on the system.<br>


Allow User Domain Objects
===Password Formatting Rules===
QALWUSRDMN value is: *ALL, Default value is: *ALL: Allow user domain objects in any library on the system.
'''QPWDEXPITV''' value is: 45, Default value is: *NOMAX: Password expiration interval.<br>
'''QPWDLMTAJC''' value is: 1, Default value is: 0: Limit adjacent digits in password.<br>
'''QPWDLMTCHR''' value is: @#$, Default value is: *NONE: Limit characters in password.<br>
'''QPWDLMTREP''' value is: 2, Default value is: 0: Limit repeating characters in password.<br>
'''QPWDLVL''' value is: 0, Default value is: 0: Password level.<br>
'''QPWDMAXLEN''' value is: 10, Default value is: 8: Maximum password length.<br>
'''QPWDMINLEN''' value is: 6, Default value is: 6: Minimum password length.<br>
'''QPWDRQDDGT''' value is: 1, Default value is: 0: Require digit in password.<br>
'''QPWDRQDDIF''' value is: 6, Default value is: 0: Duplicate password control.<br>


Password Formatting Rules
===Maximum Sign-On Attempts===
QPWDEXPITV value is: 45, Default value is: *NOMAX: Password expiration interval.
'''QRMTSIGN''' value is: *FRCSIGNON, Default value is: *FRCSIGNON: Remote sign-on control. If there isn't a need for access, set this value to *REJECT instead.<br>
QPWDLMTAJC value is: 1, Default value is: 0: Limit adjacent digits in password.
'''QMAXSGNACN''' value is: 3, Default value is: 3: Action to take for failed signon attempts.<br>
QPWDLMTCHR value is: @#$, Default value is: *NONE: Limit characters in password.
QPWDLMTREP value is: 2, Default value is: 0: Limit repeating characters in password.
QPWDLVL value is: 0, Default value is: 0: Password level.
QPWDMAXLEN value is: 10, Default value is: 8: Maximum password length.
QPWDMINLEN value is: 6, Default value is: 6: Minimum password length.
QPWDRQDDGT value is: 1, Default value is: 0: Require digit in password.
QPWDRQDDIF value is: 6, Default value is: 0: Duplicate password control.


Maximum Sign-On Attempts
===Limit Security Officer Access===
QRMTSIGN value is: *FRCSIGNON, Default value is: *FRCSIGNON: Remote sign-on control. If there isn't a need for access, set this value to *REJECT instead.
'''QLMTSECOFR''' value is: 1, Default value is: 1, Limit security officer device access.<br>
QMAXSGNACN value is: 3, Default value is: 3: Action to take for failed signon attempts.


Limit Security Officer Access
===Remote Sign-On Control===
QLMTSECOFR value is: 1, Default value is: 1, Limit security officer device access.
'''QRMTSIGN''' value is: *FRCSIGNON, Default value is: *FRCSIGNON: Remote sign-on control. If there isn't a need for access, set this value to *REJECT instead.<br>


Remote Sign-On Control
===Limit Number of Device Sessions===
QRMTSIGN value is: *FRCSIGNON, Default value is: *FRCSIGNON: Remote sign-on control. If there isn't a need for access, set this value to *REJECT instead.
'''QLMTDEVSSN''' value is: 1, Default value is: 0: Limit device sessions.<br>
'''QMAXSGNACN''' value is: 3, Default value is: 3: Action to take for failed signon attempts.<br>


Limit Number of Device Sessions
===Automatic Configuration of Local Devices===
QLMTDEVSSN value is: 1, Default value is: 0: Limit device sessions.
'''QAUTOCFG''' value is: 0, Default value is: 1, Allows the autoconfigure of local devices if this is set to a 0.<br>
QMAXSGNACN value is: 3, Default value is: 3: Action to take for failed signon attempts.


Automatic Configuration of Local Devices
===Automatic Configuration of Virtual Devices===
QAUTOCFG value is: 0, Default value is: 1, Allows the autoconfigure of local devices if this is set to a 0.
'''QMAXSIGN''' value is: 4, Default value is: 3: Maximum sign-on attempts allowed.<br>
'''QAUTOVRT''' value is: 0, Default value is: 0: Autoconfigure virtual devices. This allows for the automatic configuration of virtual devices.<br>


Automatic Configuration of Virtual Devices
===Attention Program===
QMAXSIGN value is: 4, Default value is: 3: Maximum sign-on attempts allowed.
QAUTOVRT value is: 0, Default value is: 0: Autoconfigure virtual devices. This allows for the automatic configuration of virtual devices.


Attention Program
----
--[[User:Mdpeters|Mdpeters]] 07:45, 29 August 2006 (EDT)

Latest revision as of 11:45, 29 August 2006

System Console

QCONSOLE value is: DSP03: Console name. This value is set by the system administrator. It is recommended that the system be located in a physically secure location.

Dedicated Service Tools

Security Level

QSECURITY value is: 40, Default value is: 10, System security level. It is recommended that a level of no less than 30 be used.

Allow User Domain Objects

QALWUSRDMN value is: *ALL, Default value is: *ALL: Allow user domain objects in any library on the system.

Password Formatting Rules

QPWDEXPITV value is: 45, Default value is: *NOMAX: Password expiration interval.
QPWDLMTAJC value is: 1, Default value is: 0: Limit adjacent digits in password.
QPWDLMTCHR value is: @#$, Default value is: *NONE: Limit characters in password.
QPWDLMTREP value is: 2, Default value is: 0: Limit repeating characters in password.
QPWDLVL value is: 0, Default value is: 0: Password level.
QPWDMAXLEN value is: 10, Default value is: 8: Maximum password length.
QPWDMINLEN value is: 6, Default value is: 6: Minimum password length.
QPWDRQDDGT value is: 1, Default value is: 0: Require digit in password.
QPWDRQDDIF value is: 6, Default value is: 0: Duplicate password control.

Maximum Sign-On Attempts

QRMTSIGN value is: *FRCSIGNON, Default value is: *FRCSIGNON: Remote sign-on control. If there isn't a need for access, set this value to *REJECT instead.
QMAXSGNACN value is: 3, Default value is: 3: Action to take for failed signon attempts.

Limit Security Officer Access

QLMTSECOFR value is: 1, Default value is: 1, Limit security officer device access.

Remote Sign-On Control

QRMTSIGN value is: *FRCSIGNON, Default value is: *FRCSIGNON: Remote sign-on control. If there isn't a need for access, set this value to *REJECT instead.

Limit Number of Device Sessions

QLMTDEVSSN value is: 1, Default value is: 0: Limit device sessions.
QMAXSGNACN value is: 3, Default value is: 3: Action to take for failed signon attempts.

Automatic Configuration of Local Devices

QAUTOCFG value is: 0, Default value is: 1, Allows the autoconfigure of local devices if this is set to a 0.

Automatic Configuration of Virtual Devices

QMAXSIGN value is: 4, Default value is: 3: Maximum sign-on attempts allowed.
QAUTOVRT value is: 0, Default value is: 0: Autoconfigure virtual devices. This allows for the automatic configuration of virtual devices.

Attention Program


--Mdpeters 07:45, 29 August 2006 (EDT)