PHTN-30-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less.

Information

A session timeout is an action taken when a session goes idle for any reason. Rather than relying on the user to manually disconnect their session prior to going idle, the Photon operating system must be able to identify when a session has idled and take action to terminate the session.

Satisfies: SRG-OS-000029-GPOS-00010, SRG-OS-000279-GPOS-00109, SRG-OS-000126-GPOS-00066

Solution

Navigate to and open:

/etc/profile.d/tmout.sh

Set its content to the following:

TMOUT=900
readonly TMOUT
export TMOUT
mesg n 2>/dev/null

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_7-0_Y24M01_STIG.zip

Item Details

Category: ACCESS CONTROL, MAINTENANCE

References: 800-53|AC-11a., 800-53|AC-12, 800-53|MA-4e., CAT|II, CCI|CCI-000057, CCI|CCI-000879, CCI|CCI-002361, Rule-ID|SV-256482r887120_rule, STIG-ID|PHTN-30-000005, Vuln-ID|V-256482

Plugin: Unix

Control ID: 2a479fe9b0939db1307a872749c9e74475843e23d2db4c76734fbc05fddb4b77