Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-000056
CCI
CCI|CCI-000056
Title
Retain the device lock until the user reestablishes access using established identification and authentication procedures.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2024
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
1.1 APPL-14-000001
Unix
CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.2 APPL-14-000002
Unix
CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.3 APPL-14-000003
Unix
CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.8.6 Ensure GDM session lock is enabled
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.36 UBTU-24-200040
Unix
CIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.69 UBTU-22-271020
Unix
CIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.97 APPL-14-002090
Unix
CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.155 OL08-00-020030
Unix
CIS Oracle Linux 8 STIG v1.0.0 CAT II
1.159 OL08-00-020043
Unix
CIS Oracle Linux 8 STIG v1.0.0 CAT II
1.160 OL08-00-020050
Unix
CIS Oracle Linux 8 STIG v1.0.0 CAT II
1.244 RHEL-09-271045
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.245 RHEL-09-271050
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.246 RHEL-09-271055
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.247 RHEL-09-271060
Unix
CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
5.006 - The system configuration is not set with a password-protected screen saver. - ScreenSaveActive
Windows
DISA Windows Vista STIG v6r41
5.006 - The system configuration is not set with a password-protected screen saver. - ScreenSaverIsSecure
Windows
DISA Windows Vista STIG v6r41
5.006 - The system configuration is not set with a password-protected screen saver. - ScreenSaveTimeOut
Windows
DISA Windows Vista STIG v6r41
AIX7-00-001028 - AIX must provide the lock command to let users retain their session lock until users are reauthenticated.
Unix
DISA STIG AIX 7.x v3r1
AIX7-00-001029 - AIX must provide xlock command in the CDE environment to let users retain their sessions lock until users are reauthenticated.
Unix
DISA STIG AIX 7.x v3r1
ALMA-09-002000 - AlmaLinux OS 9 must be able to directly initiate a session lock for all connection types using smart card when the smart card is removed.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r3
ALMA-09-002110 - AlmaLinux OS 9 must prevent a user from overriding the disabling of the graphical user smart card removal action.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r3
AOSX-13-000007 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000020 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000025 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-000001 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000003 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-000001 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-000003 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple Mac OSX 10.15 v1r10
APPL-11-000001 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple macOS 11 v1r5
APPL-11-000001 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple macOS 11 v1r5
APPL-11-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-000003 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple macOS 11 v1r5
APPL-11-000003 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple macOS 11 v1r8
APPL-12-000001 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple macOS 12 v1r9
APPL-12-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple macOS 12 v1r9
APPL-12-000003 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple macOS 12 v1r9
APPL-13-000001 - The macOS system must be configured to prevent Apple Watch from terminating a session lock.
Unix
DISA STIG Apple macOS 13 v1r5
APPL-13-000002 - The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures.
Unix
DISA STIG Apple macOS 13 v1r5
APPL-13-000003 - The macOS system must initiate the session lock no more than five seconds after a screen saver is started.
Unix
DISA STIG Apple macOS 13 v1r5
APPL-14-000001 - The macOS system must prevent Apple Watch from terminating a session lock.
Unix
DISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-000002 - The macOS system must enforce screen saver password.
Unix
DISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-000003 - The macOS system must enforce session lock no more than five seconds after screen saver is started.
Unix
DISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-002090 - The macOS system must disable TouchID for unlocking the device.
Unix
DISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-15-000001 - The macOS system must prevent Apple Watch from terminating a session lock.
Unix
DISA Apple macOS 15 (Sequoia) STIG v1r4
APPL-15-000002 - The macOS system must enforce screen saver password.
Unix
DISA Apple macOS 15 (Sequoia) STIG v1r4
APPL-15-000003 - The macOS system must enforce session lock no more than five seconds after screen saver is started.
Unix
DISA Apple macOS 15 (Sequoia) STIG v1r4
APPL-15-002090 - The macOS system must disable TouchID for unlocking the device.
Unix
DISA Apple macOS 15 (Sequoia) STIG v1r4
