The Tanium application must set an inactive timeout for sessions.
An XCCDF Rule
Description
Leaving sessions open indefinitely is a major security risk. An attacker can easily use an already authenticated session to access the hosted application as the previously authenticated user. By closing sessions after a set period of inactivity, the web server can make certain that sessions not closed through the user logging out of an application are eventually closed. Acceptable values are 5 minutes for high-value applications, 10 minutes for medium-value applications, and 20 minutes for low-value applications.
- ID
- SV-254927r961221_rule
- Version
- TANS-AP-000720
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
In the event the "max_console_idle_seconds" setting exists, but is not "900" or less:
1. Using a web browser on a system that has connectivity to the Tanium Application, access the Tanium Application web user interface (UI) and log on with multi-factor authentication.
2. Click "Administration" on the top navigation banner.