3.1 Ensure 'Idle timeout' is less than or equal to 10 minutes for Configuration utility sessions

Information

To set an idle timeout for GUI sessions

Rationale:

Unattended administrative sessions may provide illegal access to the device

Impact:

Indefinite or even long session timeout windows can increase the risk of attackers abusing abandoned sessions.

Solution

On Configuration utility:

System > Preferences, Under Security settings...set the value of Idle Time Before Automatic Logout to 600 seconds

Default Value:

1200

See Also

https://workbench.cisecurity.org/files/3587

Item Details

Category: CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

References: 800-53|CM-1, 800-53|CM-2, 800-53|CM-6, 800-53|CM-7, 800-53|CM-7(1), 800-53|CM-9, 800-53|SA-3, 800-53|SA-8, 800-53|SA-10, CSCv7|5.1

Plugin: F5

Control ID: 9e9fd9a8e700010ecdc518ebc6e818f5bbf35fbb028ca7e16326b859d83271aa