Keywords

The following table indicates how each keyword in the IBM iSeries compliance checks can be used:

Keyword	Example Use and Supported Settings
type	AUDIT_SYSTEMVAL SHOW_SYSTEMVAL
systemvalue	This keyword is used to specify a specific value to be checked within the IBM iSeries system. Example: systemvalue: "QALWUSRDMN"
description	This keyword provides the ability to add a brief description of the check that is being performed. It is strongly recommended that the `description` field be unique and no distinct checks have the same description field. Tenable uses this field to automatically generate a unique plugin ID number based on the description field. Example: description: "Allow User Domain Objects (QALWUSRDMN) - '*all'"
value_type	This keyword is used to define the type of value (either “POLICY_DWORD” or “POLICY_TEXT”) being checked on the IBM iSeries system. Example: value_type: "POLICY_DWORD" Example: value_type: "POLICY_TEXT"
value_data	This keyword defines that data value that is expected for a system value. Example: value_type: "^([6-9]\|[1-9][0-9]+)$"
check_type	This keyword defines the type of check being used against a data value. Examples: check_type: "CHECK_EQUAL" check_type: "CHECK_NOT_EQUAL" check_type: "CHECK_GREATER_THAN" check_type: "CHECK_GREATER_THAN_OR_EQUAL" check_type: "CHECK_LESS_THAN" check_type: "CHECK_LESS_THAN_OR_EQUAL" check_type: "CHECK_REGEX" <custom_item> type: AUDIT_SYSTEMVAL systemvalue: "QUSEADPAUT" description: "Use Adopted Authority (QUSEADPAUT) - '!= none'" value_type: POLICY_TEXT value_data: "none" check_type: CHECK_NOT_EQUAL </custom_item>
info	This keyword is used to add a more detailed description to the check that is being performed such as a regulation, URL, corporate policy, or other reason why the setting is required. Multiple `info` fields can be added on separate lines to format the text as a paragraph. There is no preset limit to the number of `info` fields that can be used.