IBM System i Security Reference for V7R3

Audit Details

Name: IBM System i Security Reference for V7R3

Updated: 6/17/2024

Authority: IBM

Plugin: AS/400

Revision: 1.16

Estimated Item Count: 47

File Details

Filename: IBM_v7_r3_iseries_security_reference.audit

Size: 51.6 kB

MD5: 605b32c0013895c70e7a7391c36fbc58
SHA256: 9d4fb9f3cac9485f63c1b608c94c269e71ba9ff7134bc952338ea400398fac1e

Audit Changelog

 
Revision 1.16

Jun 17, 2024

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.15

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
  • Variables updated.
Revision 1.14

Dec 7, 2022

Miscellaneous
  • Metadata updated.
Added
  • IBM i : Use Adopted Authority (QUSEADPAUT) - AUTH_LIST_NAME
Removed
  • IBM i : Use Adopted Authority (QUSEADPAUT) - '*@AUTH_LIST_NAME@'
Revision 1.13

Jul 12, 2022

Miscellaneous
  • Metadata updated.
Revision 1.12

Apr 25, 2022

Miscellaneous
  • References updated.
Revision 1.11

Mar 22, 2022

Functional Update
  • IBM i : Auditing Force Level (QAUDFRCLVL) - '*SYS'
Revision 1.10

Jan 13, 2022

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.9

Sep 27, 2021

Functional Update
  • IBM i : Auditing Level (QAUDLVL) - '*SECURITY'
  • IBM i : Auditing Level (QAUDLVL2) - '*SECURITY'
Revision 1.8

Aug 18, 2021

Functional Update
  • IBM i : Auditing Level (QAUDLVL) - '*SECURITY'
  • IBM i : Auditing Level (QAUDLVL2) - '*SECURITY'
Informational Update
  • IBM i : Action When Sign-On Attempts Reached (QMAXSGNACN) - '3'
  • IBM i : Allow Restoring of Security-Sensitive Objects (QALWOBJRST) - '*NONE'
  • IBM i : Allow User Domain Objects (QALWUSRDMN) - '*ALL'
  • IBM i : Auditing Control (QAUDCTL) - '!= *NONE'
  • IBM i : Auditing End Action (QAUDENDACN) - '*NOTIFY or *PWRDWNSYS'
  • IBM i : Auditing Force Level (QAUDFRCLVL) - '*SYS'
  • IBM i : Auditing Level (QAUDLVL) - '*SECURITY'
  • IBM i : Auditing Level (QAUDLVL2) - '*SECURITY'
  • IBM i : Authority for New Objects (QCRTAUT) - '*CHANGE'
  • IBM i : Automatic Configuration of Virtual Devices (QAUTOVRT) - '0'
  • IBM i : Automatic Device Configuration (QAUTOCFG) - '0'
  • IBM i : Block Password Change (QPWDCHGBLK) - '>=48'
  • IBM i : Character Position Difference for Passwords (QPWDPOSDIF) - '0'
  • IBM i : Device Recovery Action (QDEVRCYACN) - '*DSCMSG'
  • IBM i : Disconnected Job Time-Out Interval (QDSCJOBITV) - '<=120'
  • IBM i : Display Sign-On Information (QDSPSGNINF) - '1'
  • IBM i : Force Conversion on Restore (QFRCCVNRST) - '>=3'
  • IBM i : Limit Device Sessions (QLMTDEVSSN) - '1'
  • IBM i : Maximum Length of Passwords (QPWDMAXLEN) - '>=8'
  • IBM i : Maximum Sign-On Attempts (QMAXSIGN) - '<=3'
  • IBM i : Minimum Length of Passwords (QPWDMINLEN) - '>=7'
  • IBM i : Password Approval Program (QPWDVLDPGM) - '*NONE'
  • IBM i : Password Expiration Interval (QPWDEXPITV) - '30 to 90'
  • IBM i : Password Expiration Warning (QPWDEXPWRN) - '<=14'
  • IBM i : Password Level (QPWDLVL) - '>=0'
  • IBM i : Remote Sign-On Control (QRMTSIGN) - '*REJECT'
  • IBM i : Required Difference in Passwords (QPWDRQDDIF) - '<=5'
  • IBM i : Requirement for Numeric Character in Passwords (QPWDRQDDGT) - '1'
  • IBM i : Restricted Characters for Passwords (QPWDLMTCHR)
  • IBM i : Restriction of Consecutive Digits for Passwords (QPWDLMTAJC) - '0'
  • IBM i : Restriction of Repeated Characters for Passwords (QPWDLMTREP) - '1'
  • IBM i : Scan File Systems (QSCANFS) - '*ROOTOPNUD'
  • IBM i : Scan File Systems Control (QSCANFSCTL)- '*NONE'
  • IBM i : Secure Sockets Layer (SSL) cipher control (QSSLCSLCTL) - '*OPSYS'
  • IBM i : Secure Sockets Layer (SSL) cipher specification list (QSSLCSL)
  • IBM i : Secure Sockets Layer (SSL) protocols (QSSLPCL) - '*OPSYS'
  • IBM i : Share Memory Control (QSHRMEMCTL) - '1'
  • IBM i : Use Adopted Authority (QUSEADPAUT) - '*@AUTH_LIST_NAME@'
  • IBM i : Verify Object on Restore (QVFYOBJRST) - '3'
Miscellaneous
  • References updated.
Revision 1.7

Feb 1, 2021

Miscellaneous
  • Metadata updated.
  • References updated.