CCI|CCI-002361

Title

The information system automatically terminates a user session after organization-defined conditions or trigger events requiring session disconnect.

Reference Item Details

Category: 2013

Audit Items

View all Reference Audit Items

NamePluginAudit Name
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows Vista STIG v6r41
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows Server 2008 MS STIG v6r46
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows 7 STIG v1r32
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows Server 2008 R2 DC STIG v1r34
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows Server 2008 R2 MS STIG v1r33
4.028 - The amount of idle time required before suspending a session must be properly set.WindowsDISA Windows Server 2008 DC STIG v6r47
4.340 - The system must be configured so that all network connections associated with SSH traffic terminate after a period of inactivity.UnixTenable Fedora Linux Best Practices v2.0.0
5.3.19 Ensure SSH Idle Timeout Interval is configured - ClientAliveCountMaxUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.19 Ensure SSH Idle Timeout Interval is configured - ClientAliveIntervalUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.4 Ensure default user shell timeout is configuredUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.046 - Terminal Services is not configured to set a time limit for disconnected sessions.WindowsDISA Windows Vista STIG v6r41
5.047 - Terminal Services idle session time limit does not meet the requirement.WindowsDISA Windows Vista STIG v6r41
AIX7-00-002105 - AIX must config the SSH idle timeout intervalUnixDISA STIG AIX 7.x v2r8
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMaxUnixDISA STIG AIX 7.x v2r5
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMaxUnixDISA STIG AIX 7.x v2r6
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMaxUnixDISA STIG AIX 7.x v2r1
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMaxUnixDISA STIG AIX 7.x v2r3
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveIntervalUnixDISA STIG AIX 7.x v2r1
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveIntervalUnixDISA STIG AIX 7.x v2r3
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveIntervalUnixDISA STIG AIX 7.x v2r6
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveIntervalUnixDISA STIG AIX 7.x v2r5
AIX7-00-002105 - AIX must config the SSH idle timeout interval.UnixDISA STIG AIX 7.x v2r9
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivityUnixDISA STIG AIX 7.x v2r8
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUTUnixDISA STIG AIX 7.x v2r6
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUTUnixDISA STIG AIX 7.x v2r1
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUTUnixDISA STIG AIX 7.x v2r3
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUTUnixDISA STIG AIX 7.x v2r5
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUTUnixDISA STIG AIX 7.x v2r5
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUTUnixDISA STIG AIX 7.x v2r6
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUTUnixDISA STIG AIX 7.x v2r1
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUTUnixDISA STIG AIX 7.x v2r3
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity.UnixDISA STIG AIX 7.x v2r9
APPL-14-000120 - The macOS system must configure SSHD Channel Timeout to 900.UnixDISA Apple macOS 14 (Sonoma) STIG v1r2
APPL-14-000130 - The macOS system must configure SSHD unused connection timeout to 900.UnixDISA Apple macOS 14 (Sonoma) STIG v1r2
APPL-14-000160 - The macOS system must enforce auto logout after 86400 seconds of inactivity.UnixDISA Apple macOS 14 (Sonoma) STIG v1r2
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r7
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000460 - The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.UnixDISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000650 - The Apache web server must set an inactive timeout for sessions - reqtimeout_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware