The terminal or workstation must lock out after a maximum of 15 minutes of inactivity, requiring the account password to resume.

An XCCDF Rule

Details
Profiles

Description

If the system, workstation, or terminal does not lock the session after more than15 minutes of inactivity, requiring a password to resume operations, the system or individual data could be compromised by an alert intruder who could exploit the oversight.

ID: SV-256883r958402_rule
Version: HMC0150
Severity: Medium
References: CCI-000057
Updated: 5 days ago

Remediation Templates

The System Administrator will display the User Properties window and will ensure that the Verify timeout minutes are set to a maximum of 15.

The terminal or workstation must lock out after a maximum of 15 minutes of inactivity, requiring the account password to resume.

Description

Remediation Templates

A Manual Procedure