Detections
Analytics

1.8.2 Ensure 'SSH session timeout' is less than or equal to '5' minutes

Information

Sets the idle timeout for an SSH session before the security appliance terminates it.

Rationale:

Limiting session timeout prevents unauthorized users from using abandoned sessions to perform malicious activities.

Solution

Step 1: Run the following to set the SSH timeout to 5 minutes

hostname(config)# ssh timeout 5

Default Value:

The default session timeout value is 5 minutes.

See Also

https://workbench.cisecurity.org/files/3246

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-2, CSCv6|16.4, CSCv7|11.1

Plugin: Cisco

Control ID: 0db8157cd6f75435adf4c3b3853fb0ddd42899bb73c49e370db0a2322a3315a3