Citrix License Server must prohibit the use of cached authenticators after an organization-defined time period.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>If cached authentication information is out of date, the validity of the authentication information may be questionable.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-234225r628795_rule
Severity: Medium
References: CCI-002007
Updated: about 1 year ago

1. Click "Administration" and select the "Server Configuration" tab.

2. Click the Web Server Configuration bar.

3. For Session Timeout, enter the value of “10” (minutes).

Citrix License Server must prohibit the use of cached authenticators after an organization-defined time period.

Description

Remediation - Manual Procedure