Detections
Analytics

800-53|AC-10

Title

CONCURRENT SESSION CONTROL

Description

The information system limits the number of concurrent sessions for each [Assignment: organization-defined account and/or account type] to [Assignment: organization-defined number].

Supplemental

Organizations may define the maximum number of concurrent sessions for information system accounts globally, by account type (e.g., privileged user, non-privileged user, domain, specific application), by account, or a combination. For example, organizations may limit the number of concurrent sessions for system administrators or individuals working in particularly sensitive domains or mission-critical applications. This control addresses concurrent sessions for information system accounts and does not address concurrent sessions by single users via multiple system accounts.

Reference Item Details

Category: ACCESS CONTROL

Family: ACCESS CONTROL

Priority: P3

Baseline Impact: HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.2.9 Set 'http Secure-server' limitCiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.2.10 Set 'http Secure-server' limitCiscoCIS Cisco IOS XE 16.x v2.2.0 L1
1.5.5 Ensure number of concurrent sessions is limitedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.5.5 Ensure number of concurrent sessions is limitedUnixCIS Amazon Linux 2 STIG v2.0.0 STIG
1.34 UBTU-24-200000UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT III
1.82 UBTU-22-412020UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT III
1.150 OL08-00-020024UnixCIS Oracle Linux 8 STIG v1.0.0 CAT III
1.289 RHEL-09-412040UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT III
3.1.11 Set maximum connection limits - MAX_CONNECTIONSUnixCIS IBM DB2 v10 v1.1.0 Linux OS Level 2
3.1.11 Set maximum connection limits - MAX_CONNECTIONSUnixCIS IBM DB2 v10 v1.1.0 Linux OS Level 1
3.1.11 Set maximum connection limits - MAX_COORDAGENTSUnixCIS IBM DB2 v10 v1.1.0 Linux OS Level 1
3.1.11 Set maximum connection limits - MAX_COORDAGENTSUnixCIS IBM DB2 v10 v1.1.0 Linux OS Level 2
3.1.11 Set maximum connection limits - MAXAPPLSUnixCIS IBM DB2 v10 v1.1.0 Linux OS Level 2
3.1.11 Set maximum connection limits - MAXAPPLSUnixCIS IBM DB2 v10 v1.1.0 Linux OS Level 1
3.1.14 Set maximum connection limits - 'max_connections <= 100'UnixCIS IBM DB2 OS L2 v1.2.0
3.1.14 Set maximum connection limits - 'max_coordagents <= 100'UnixCIS IBM DB2 OS L2 v1.2.0
3.1.14 Set maximum connection limits - 'maxappls <= 99'UnixCIS IBM DB2 OS L2 v1.2.0
3.1.14 Set maximum connection limits - MAX_CONNECTIONSIBM_DB2DBCIS IBM DB2 9 Benchmark v3.0.1 Level 2 DB
3.1.14 Set maximum connection limits - MAX_CONNECTIONSIBM_DB2DBCIS IBM DB2 9 Benchmark v3.0.1 Level 1 DB
3.1.14 Set maximum connection limits - MAX_COORDAGENTSIBM_DB2DBCIS IBM DB2 9 Benchmark v3.0.1 Level 1 DB
3.1.14 Set maximum connection limits - MAX_COORDAGENTSIBM_DB2DBCIS IBM DB2 9 Benchmark v3.0.1 Level 2 DB
4.1.12 Set Maximum Number of Applications (MAXAPPLS)UnixCIS IBM DB2 11 v1.2.0 Linux OS Level 1
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS CentOS Linux 7 v4.0.0 L1 Server
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS CentOS Linux 7 v4.0.0 L1 Workstation
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS Oracle Linux 7 v4.0.0 L1 Workstation
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS Oracle Linux 7 v4.0.0 L1 Server
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS Amazon Linux 2 v3.0.0 L1
4.2.13 Ensure sshd LoginGraceTime is configuredUnixCIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS CentOS Linux 7 v4.0.0 L1 Server
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS Oracle Linux 7 v4.0.0 L1 Workstation
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS Amazon Linux 2 v3.0.0 L1
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS CentOS Linux 7 v4.0.0 L1 Workstation
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS Oracle Linux 7 v4.0.0 L1 Server
4.2.17 Ensure sshd MaxSessions is configuredUnixCIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation
4.2.18 Ensure SSH MaxSessions is set to 10 or lessUnixCIS Amazon Linux 2023 v1.0.0 L1 Server
5.4.3.14 Ensure the number of concurrent sessions is configuredUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
5.5 Ensure per-account connection limits are usedPostgreSQLDBCIS PostgreSQL 14 DB v 1.3.0
5.5 Ensure per-account connection limits are usedPostgreSQLDBCIS PostgreSQL 13 DB v1.2.0
5.11 Disable ability to login to another user's active and locked sessionUnixCIS Apple OSX 10.11 El Capitan L1 v1.1.0
5.11 Disable ability to login to another user's active and locked sessionUnixCIS Apple OSX 10.9 L1 v1.3.0
5.11 Disable ability to login to another user's active and locked sessionUnixCIS Apple OSX 10.10 Yosemite L1 v1.2.0
5.13 Disable ability to login to another user's active and locked sessionUnixCIS Apple macOS 10.12 L1 v1.2.0
5.15 Disable Fast User SwitchingUnixCIS Apple OSX 10.11 El Capitan L2 v1.1.0
5.15 Disable Fast User SwitchingUnixCIS Apple OSX 10.10 Yosemite L2 v1.2.0
5.15 Disable Fast User SwitchingUnixCIS Apple OSX 10.9 L2 v1.3.0
5.16 Disable Fast User SwitchingUnixCIS Apple macOS 10.13 L2 v1.1.0
5.17 Disable Fast User SwitchingUnixCIS Apple macOS 10.12 L2 v1.2.0
9.2 Ensure KeepAlive Is EnabledUnixCIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware