1.4.1 Ensure 'Idle timeout' is less than or equal to 10 minutes for device management

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Set the Idle Timeout value for device management to 10 minutes or less to automatically close inactive sessions.


An unattended computer with an open administrative session to the device could allow an unauthorized user access to the firewall's management interface.


Navigate to Device > Setup > Management > Authentication Settings.
Set Idle Timeout to less than or equal to 10.

Default Value:

Not configured

See Also