The Smart Card removal option must be configured to Force Logoff or Lock Workstation.

An XCCDF Rule

Details
Profiles

Description

Unattended systems are susceptible to unauthorized use and must be locked. Configuring a system to lock when a smart card is removed will ensure the system is inaccessible when unattended.

ID: SV-225038r991589_rule
Version: WN16-SO-000180
Severity: Medium
References: CCI-000366
Updated: 15 days ago

Remediation Templates

Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Interactive logon: Smart card removal behavior" to "Lock Workstation" or "Force Logoff".

The Smart Card removal option must be configured to Force Logoff or Lock Workstation.

Description

Remediation Templates

A Manual Procedure