Skip to content
ATO Pathways
  Log In

CCI-001185

Invalidate session identifiers upon user logout or other session termination.

Logo
6

Rule

Severity: Medium
The Apache web server must invalidate session identifiers upon hosted application user logout or other session termination.
Logo
2

Rule

Severity: Medium
The ALG must invalidate session identifiers upon user logout or other session termination.
Logo
2

Rule

Severity: Medium
The application server must invalidate session identifiers upon user logout or other session termination.
Logo
2

Rule

Severity: High
The application must destroy the session ID value and/or cookie on logoff or browser close.
Logo
1

Rule

Severity: Medium
The CA API Gateway must invalidate session identifiers upon user logout or other session termination.
Logo
1

Rule

Severity: Medium
The DataPower Gateway must invalidate session identifiers upon user logout or other session termination.
Logo
1

Rule

Severity: High
SharePoint must terminate user sessions upon user logoff, and when idle time limit is exceeded.
Logo
2

Rule

Severity: Medium
The network device must invalidate session identifiers upon administrator logout or other session termination.
Logo
1

Rule

Severity: Medium
Oracle WebLogic must terminate user sessions upon user logout or any other organization- or policy-defined session termination events such as idle time limit exceeded.
Logo
2

Rule

Severity: Medium
The UEM server must invalidate session identifiers upon user logout or other session termination.
Logo
1

Rule

Severity: Medium
The Horizon Connection Server must time out administrative sessions after 15 minutes or less.
Logo
2

Rule

Severity: Medium
The VPN Gateway must invalidate session identifiers upon user logoff or other session termination.
Logo
4

Rule

Severity: Medium
PostgreSQL must invalidate session identifiers upon user logout or other session termination.
Logo
2

Rule

Severity: Medium
The EDB Postgres Advanced Server must invalidate session identifiers upon user logout or other session termination.
Logo
2

Rule

Severity: Medium
The DBMS must invalidate session identifiers upon user logout or other session termination.
Logo
2

Rule

Severity: Medium
MariaDB must invalidate session identifiers upon user logout or other session termination.
Logo
1

Rule

Severity: Medium
The DBMS must terminate user sessions upon user logout or any other organization or policy-defined session termination events, such as idle time limit exceeded.
Logo
2

Rule

Severity: Medium
The DBMS must terminate user sessions upon user logoff or any other organization or policy-defined session termination events, such as idle time limit exceeded.
Logo
2

Rule

Severity: Medium
The web server must invalidate session identifiers upon hosted application user logout or other session termination.

Patternfly

PatternFly elements

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules