The DBMS must prohibit the use of cached authenticators after an organization-defined time period.

An XCCDF Rule

Description

If cached authentication information is out-of-date, the validity of the authentication information may be questionable.

ID: SV-206601r961521_rule
Version: SRG-APP-000400-DB-000367
Severity: Medium
References: CCI-002007
Updated: about 2 months ago

Remediation Templates

Modify system settings to implement the organization-defined limit on the lifetime of cached authenticators.