800-53|AC-9

Title

PREVIOUS LOGON (ACCESS) NOTIFICATION

Description

The information system notifies the user, upon successful logon (access) to the system, of the date and time of the last logon (access).

Supplemental

This control is applicable to logons to information systems via human user interfaces and logons to systems that occur in other types of architectures (e.g., service-oriented architectures).

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: AC-7,PL-4

Category: ACCESS CONTROL

Family: ACCESS CONTROL

Priority: P0

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
4.360 - The system must display the date and time of the last successful account logon upon an SSH logon.	Unix	Tenable Fedora Linux Best Practices v2.0.0
4.530 - The system must display the date and time of the last successful account logon upon logon.	Unix	Tenable Fedora Linux Best Practices v2.0.0
4.530 - The system must display the date and time of the last successful account logon upon logon. - silent	Unix	Tenable Fedora Linux Best Practices v2.0.0
5.2.24 Ensure Printlastlog is enabled	Unix	CIS Amazon Linux 2 STIG v1.0.0 L3
5.3.8 Ensure date and time of last successful logon - showfailed	Unix	CIS Amazon Linux 2 STIG v1.0.0 L3
5.3.8 Ensure date and time of last successful logon - silent	Unix	CIS Amazon Linux 2 STIG v1.0.0 L3
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Oracle Linux 7 Server L1 v3.0.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Red Hat EL7 Server L1 v3.0.1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS CentOS 6 Workstation L1 v2.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS SUSE Linux Enterprise Workstation 12 L1 v2.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Ubuntu Linux 18.04 LTS Workstation L1 v2.0.1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Red Hat EL7 Workstation L1 v3.0.1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Oracle Linux 7 Workstation L1 v3.0.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS CentOS 6 Server L1 v2.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Amazon Linux 2 v1.0.0 L1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Ubuntu Linux 20.04 LTS Workstation L1 v1.0.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS SUSE Linux Enterprise Server 12 L1 v2.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Ubuntu Linux 16.04 LTS Server L1 v1.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Debian 8 Workstation L1 v2.0.1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Oracle Linux 6 Server L1 v1.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Oracle Linux 6 Workstation L1 v1.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Debian 8 Server L1 v2.0.1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Red Hat 6 Server L1 v2.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Red Hat 6 Workstation L1 v2.1.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Ubuntu Linux 20.04 LTS Server L1 v1.0.0
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1
5.4.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Ubuntu Linux 16.04 LTS Workstation L1 v1.1.0
5.4.1.4 Ensure password expiration warning days is 7 or more - users	Unix	CIS SUSE Linux Enterprise 15 Server L1 v1.0.0
5.4.1.4 Ensure password expiration warning days is 7 or more - users	Unix	CIS SUSE Linux Enterprise 15 Workstation L1 v1.0.0
5.5.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Oracle Linux 8 Workstation L1 v1.0.0
5.5.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS CentOS Linux 8 Workstation L1 v1.0.0
5.5.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Red Hat EL8 Server L1 v1.0.0
5.5.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Red Hat EL8 Workstation L1 v1.0.0
5.5.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS CentOS Linux 8 Server L1 v1.0.0
5.5.1.3 Ensure password expiration warning days is 7 or more - users	Unix	CIS Oracle Linux 8 Server L1 v1.0.0
AIX7-00-001024 - SSH must display the date and time of the last successful account login to AIX system upon login.	Unix	DISA STIG AIX 7.x v2r1
AIX7-00-001024 - SSH must display the date and time of the last successful account login to AIX system upon login.	Unix	DISA STIG AIX 7.x v2r3
F5BI-DM-000037 - Upon successful logon, the BIG-IP appliance must be configured to notify the administrator of the date and time of the last logon.	F5	DISA F5 BIG-IP Device Management STIG v2r3
F5BI-DM-000039 - Upon successful logon, the BIG-IP appliance must be configured to notify the administrator of the number of unsuccessful logon attempts since the last successful logon.	F5	DISA F5 BIG-IP Device Management STIG v2r3
F5BI-DM-000187 - The BIG-IP appliance must be configured to notify the administrator, upon successful logon (access), of the location of last logon (terminal or IP address) in addition to the date and time of the last logon (access).	F5	DISA F5 BIG-IP Device Management STIG v2r3
F5BI-DM-000261 - The BIG-IP appliance must be configured to notify the administrator of the number of successful logon attempts occurring during an organization-defined time period.	F5	DISA F5 BIG-IP Device Management STIG v2r3
Fortigate - Login Banner - post-login-banner	FortiGate	TNS Fortigate FortiOS Best Practices v2.0.0
Fortigate - Login Banner - post-login-banner	FortiGate	TNS Fortigate FortiOS Best Practices
GEN000000-HPUX0460 - The system must display the date and time of the last successful account login upon login by means other than SSH	Unix	DISA STIG HP-UX 11.31 v1r19
GEN000452 - The system must display the date and time of the last successful account login upon login	Unix	DISA STIG HP-UX 11.31 v1r19
GEN000452 - The system must display the date and time of the last successful account login upon login.	Unix	DISA STIG AIX 5.3 v1r2
GEN000452 - The system must display the date and time of the last successful account login upon login.	Unix	DISA STIG Solaris 10 X86 v2r1
GEN000452 - The system must display the date and time of the last successful account login upon login.	Unix	DISA STIG Solaris 10 X86 v2r2
GEN000452 - The system must display the date and time of the last successful account login upon login.	Unix	DISA STIG for Oracle Linux 5 v2r1
GEN000452 - The system must display the date and time of the last successful account login upon login.	Unix	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit

Detections

Analytics