PHTN-67-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less - readonly

Information

A session timeout is an action taken when a session goes idle for any reason. Rather than relying on the user to manually disconnect their session prior to going idle, the Photon operating system must be able to identify when a session has idled and take action to terminate the session.

Satisfies: SRG-OS-000029-GPOS-00010, SRG-OS-000126-GPOS-00066, SRG-OS-000279-GPOS-00109

Solution

Open /etc/profile.d/tmout.sh with a text editor and set its content to the following:

TMOUT=900
readonly TMOUT
export TMOUT
mesg n 2>/dev/null

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_6-7_Y23M07_STIG.zip

Item Details

Category: ACCESS CONTROL, MAINTENANCE

References: 800-53|AC-11a., 800-53|AC-12, 800-53|MA-4e., CAT|II, CCI|CCI-000057, CCI|CCI-000879, CCI|CCI-002361, Rule-ID|SV-239077r856035_rule, STIG-ID|PHTN-67-000005, Vuln-ID|V-239077

Plugin: Unix

Control ID: 8a8a0131421112376cf21a4e3a2fd625b5e4f04bcfd569126afe18db3b877e34