TOC & Recently Viewed

Recently Viewed Topics

Keywords

The following table indicates how each keyword in the IBM iSeries compliance checks can be used:

Keyword

Example Use and Supported Settings

type

AUDIT_SYSTEMVAL

SHOW_SYSTEMVAL

systemvalue

This keyword is used to specify a specific value to be checked within the IBM iSeries system.

Example:

systemvalue: "QALWUSRDMN"

description

This keyword provides the ability to add a brief description of the check that is being performed. It is strongly recommended that the description field be unique and no distinct checks have the same description field. Tenable’s SecurityCenter uses this field to automatically generate a unique plugin ID number based on the description field.

Example:

description: "Allow User Domain Objects (QALWUSRDMN) - '*all'"

value_type

This keyword is used to define the type of value (either “POLICY_DWORD” or “POLICY_TEXT”) being checked on the IBM iSeries system.

Example:

value_type: "POLICY_DWORD"

Example:

value_type: "POLICY_TEXT"

value_data

This keyword defines that data value that is expected for a system value.

Example:

value_type: "^([6-9]|[1-9][0-9]+)$"

check_type

This keyword defines the type of check being used against a data value.

Examples:

check_type: "CHECK_EQUAL"

check_type: "CHECK_NOT_EQUAL"

check_type: "CHECK_GREATER_THAN"

check_type: "CHECK_GREATER_THAN_OR_EQUAL"

check_type: "CHECK_LESS_THAN"

check_type: "CHECK_LESS_THAN_OR_EQUAL"

check_type: "CHECK_REGEX"

<custom_item>

type: AUDIT_SYSTEMVAL

systemvalue: "QUSEADPAUT"

description: "Use Adopted Authority (QUSEADPAUT) - '!= *none'"

value_type: POLICY_TEXT

value_data: "*none"

check_type: CHECK_NOT_EQUAL

</custom_item>

info

This keyword is used to add a more detailed description to the check that is being performed such as a regulation, URL, corporate policy, or other reason why the setting is required. Multiple info fields can be added on separate lines to format the text as a paragraph. There is no preset limit to the number of info fields that can be used.

Example:

info: "\nref : http://publib.boulder.ibm.com/infocenter/iseries/v5r4/topic/books/sc415302.pdf pg. 21"

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.