Detections
Analytics

CCI|CCI-000054

Title

The information system limits the number of concurrent sessions for each organization-defined account and/or account type to an organization-defined number of sessions.

Description

The organization may define the maximum number of concurrent sessions for an information system account globally, by account type, by account, or a combination. This control addresses concurrent sessions for a given information system account and does not address concurrent sessions by a single user via multiple system accounts.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.5.5 Ensure number of concurrent sessions is limitedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.038 - Remote Desktop Services will limit users to one remote session.WindowsDISA Windows Server 2008 R2 DC STIG v1r34
5.038 - Remote Desktop Services will limit users to one remote session.WindowsDISA Windows Server 2008 R2 MS STIG v1r33
5.038 - Terminal Services is not configured to limit users to one remote session (Terminal Server Role)WindowsDISA Windows Server 2008 MS STIG v6r46
5.038 - Terminal Services is not configured to limit users to one remote session (Terminal Server Role)WindowsDISA Windows Server 2008 DC STIG v6r47
AIX7-00-001004 - AIX must limit the number of concurrent sessions to 10 for all accounts and/or account types.UnixDISA STIG AIX 7.x v2r1
AIX7-00-001004 - AIX must limit the number of concurrent sessions to 10 for all accounts and/or account types.UnixDISA STIG AIX 7.x v2r9
AIX7-00-001004 - AIX must limit the number of concurrent sessions to 10 for all accounts and/or account types.UnixDISA STIG AIX 7.x v2r3
AIX7-00-001004 - AIX must limit the number of concurrent sessions to 10 for all accounts and/or account types.UnixDISA STIG AIX 7.x v2r5
AIX7-00-001004 - AIX must limit the number of concurrent sessions to 10 for all accounts and/or account types.UnixDISA STIG AIX 7.x v2r8
AIX7-00-001004 - AIX must limit the number of concurrent sessions to 10 for all accounts and/or account types.UnixDISA STIG AIX 7.x v2r6
AOSX-14-000050 - The macOS system must limit the number of concurrent SSH sessions to 10 for all accounts and/or account types.UnixDISA STIG Apple Mac OSX 10.14 v2r1
AOSX-14-000050 - The macOS system must limit the number of concurrent SSH sessions to 10 for all accounts and/or account types.UnixDISA STIG Apple Mac OSX 10.14 v2r4
AOSX-14-000050 - The macOS system must limit the number of concurrent SSH sessions to 10 for all accounts and/or account types.UnixDISA STIG Apple Mac OSX 10.14 v2r5
AOSX-14-000050 - The macOS system must limit the number of concurrent SSH sessions to 10 for all accounts and/or account types.UnixDISA STIG Apple Mac OSX 10.14 v2r6
ARST-ND-000010 - The Arista network device must limit the number of concurrent sessions to an organization-defined number for each administrator account and/or administrator account type.AristaDISA STIG Arista MLS EOS 4.2x NDM v1r1
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - KeepAliveUnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests - MaxKeepAliveRequestsUnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000010 - The Apache web server must limit the number of allowed simultaneous session requests.UnixDISA STIG Apache Server 2.4 Unix Server v2r7
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000020 - The Apache web server must perform server-side session management - httpdUnixDISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - session_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000020 - The Apache web server must perform server-side session management - usertrack_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - usertrack_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000020 - The Apache web server must perform server-side session management - usertrack_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000020 - The Apache web server must perform server-side session management - usertrack_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000020 - The Apache web server must perform server-side session management - usertrack_moduleUnixDISA STIG Apache Server 2.4 Unix Server v2r5 Middleware