Skip to content
Log In

CCI-000017

Disable accounts when the accounts have been inactive for the organization-defined time-period.

Set Account Expiration Following Inactivity

4 rules found Severity: Medium

Logo

Set existing passwords a period of inactivity before they been locked

14 rules found Severity: Medium

Logo

Compliance Guardian must provide automated mechanisms for supporting account management functions.

1 rule found Severity: Medium

Logo

The HP FlexFabric Switch must automatically disable accounts after a 35-day period of account inactivity.

1 rule found Severity: Low

Logo

The MQ Appliance network device access must automatically disable accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

The Samsung SDS EMM must automatically disable accounts after a 35 day period of account inactivity (local accounts).

1 rule found Severity: Medium

Logo

The BIG-IP appliance must automatically disable accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

The Jamf Pro EMM must automatically disable accounts after a 35 day period of account inactivity (local accounts).

1 rule found Severity: Medium

Logo

MKE must be configured to integrate with an Enterprise Identity Provider.

1 rule found Severity: Medium

Logo

Microsoft Intune service must automatically disable accounts and identifiers (individuals, groups, roles, and devices) after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

AAA Services must be configured to automatically disable accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

The application must automatically disable accounts after a 35 day period of account inactivity.

1 rule found Severity: Low

Logo

Unnecessary application accounts must be disabled, or deleted.

1 rule found Severity: Medium

Logo

The container platform must automatically disable accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

Dragos Platform must use an Identity Provider (IDP) for authentication and authorization processes.

1 rule found Severity: Medium

Logo

The Mainframe Product must automatically disable accounts after 35 days of account inactivity.

1 rule found Severity: Medium

Logo

Access to Prisma Cloud Compute must be managed based on user need and least privileged using external identity providers for authentication and grouping to role-based assignments when possible.

1 rule found Severity: Medium

Logo

OpenShift must use FIPS validated LDAP or OpenIDConnect.

1 rule found Severity: High

Logo

User accounts must be locked after 35 days of inactivity.

2 rules found Severity: Medium

Logo

The VMM must automatically disable local accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

The UEM server must automatically disable accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo

The Enterprise Voice, Video, and Messaging Session Manager must automatically disable user accounts after a 35-day period of account inactivity.

1 rule found Severity: Medium

Logo