Detections
Analytics

CCI|CCI-001133

Title

Terminate the network connection associated with a communications session at the end of the session or after an organization-defined time period of inactivity.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.31 OL08-00-010200UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.32 OL08-00-010201UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.59 UBTU-22-255030UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.60 UBTU-22-255035UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.99 UBTU-24-600000UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.100 UBTU-24-600010UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.158 OL08-00-020035UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.221 RHEL-09-255095UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.222 RHEL-09-255100UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.288 RHEL-09-412035UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.297 RHEL-09-412080UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
3.074 - The system is not configured to force users to log off when their allowed logon hours expire.WindowsDISA Windows Vista STIG v6r41
4.006 - Users must be forcibly disconnected when their logon hours expire.WindowsDISA Windows Vista STIG v6r41
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows Vista STIG v6r41
5.3.19 Ensure SSH Idle Timeout Interval is configured - ClientAliveCountMaxUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.19 Ensure SSH Idle Timeout Interval is configured - ClientAliveIntervalUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.4 Ensure default user shell timeout is configuredUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.046 - Terminal Services is not configured to set a time limit for disconnected sessions.WindowsDISA Windows Vista STIG v6r41
5.047 - Terminal Services idle session time limit does not meet the requirement.WindowsDISA Windows Vista STIG v6r41
AIX7-00-002105 - AIX must config the SSH idle timeout interval.UnixDISA STIG AIX 7.x v3r1
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity.UnixDISA STIG AIX 7.x v3r1
ALMA-09-001890 - AlmaLinux OS 9 must automatically exit interactive command shell user sessions after 10 minutes of inactivity.UnixDISA CloudLinux AlmaLinux OS 9 STIG v1r2
ALMA-09-040170 - AlmaLinux OS 9 must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.UnixDISA CloudLinux AlmaLinux OS 9 STIG v1r2
ALMA-09-040500 - AlmaLinux OS 9 must terminate idle user sessions.UnixDISA CloudLinux AlmaLinux OS 9 STIG v1r2
AOSX-13-000720 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000721 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 0.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000722 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-000051 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000052 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 0.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000053 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-000051 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-000052 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 0.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-000053 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple Mac OSX 10.15 v1r10
APPL-11-000051 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-000051 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-000052 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 0.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-000052 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 0.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-000053 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-000053 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple macOS 11 v1r5
APPL-12-000051 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple macOS 12 v1r9
APPL-12-000052 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 1.UnixDISA STIG Apple macOS 12 v1r9
APPL-12-000053 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple macOS 12 v1r9
APPL-13-000051 - The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.UnixDISA STIG Apple macOS 13 v1r5
APPL-13-000052 - The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 1.UnixDISA STIG Apple macOS 13 v1r5
APPL-13-000053 - The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.UnixDISA STIG Apple macOS 13 v1r5
APPL-14-000051 The macOS system must configure SSHD ClientAliveInterval to 900.UnixDISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-000052 The macOS system must configure SSHD ClientAliveCountMax to 1.UnixDISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-000053 The macOS system must set Login Grace Time to 30.UnixDISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-000110 The macOS system must configure SSH ServerAliveInterval option set to 900.UnixDISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-14-000120 The macOS system must configure SSHD Channel Timeout to 900.UnixDISA Apple macOS 14 (Sonoma) STIG v2r3