STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Mainframe Product Security Requirements Guide

V-205570

CAT II (Medium)

The Mainframe Product must accept Personal Identity Verification (PIV) credentials.

Rule ID

SV-205570r961494_rule

STIG

Mainframe Product Security Requirements Guide

Version

V3R4

CCIs

CCI-001953

Discussion

The use of PIV credentials facilitates standardization and reduces the risk of unauthorized access. DoD has mandated the use of the CAC to support identity management and personal authentication for systems covered under HSPD 12, as well as a primary component of layered protection for national security systems.

Check Content

If the Mainframe Product uses an external security manager for all account management, this is not applicable.

Examine user account management configurations.
 
If the Mainframe Product  account management is not configured to accept PIV credentials, this is a finding.

Fix Text

Configure the Mainframe Product account management settings to accept PIV credentials.