CCI|CCI-001133

Title

The information system terminates the network connection associated with a communications session at the end of the session or after an organization-defined time period of inactivity.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
3.074 - The system is not configured to force users to log off when their allowed logon hours expire.	Windows	DISA Windows Vista STIG v6r41
3.074 - The system must be configured to force users to log off when their allowed logon hours expire.	Windows	DISA Windows 7 STIG v1r32
3.074 - The system will be configured to force users to log off when their allowed logon hours expire.	Windows	DISA Windows Server 2008 R2 MS STIG v1r33
3.074 - The system will be configured to force users to log off when their allowed logon hours expire.	Windows	DISA Windows Server 2008 R2 DC STIG v1r34
4.006 - Users are not forcibly disconnected when logon hours expire.	Windows	DISA Windows 7 STIG v1r32
4.006 - Users must be forcibly disconnected when their logon hours expire.	Windows	DISA Windows Server 2008 DC STIG v6r47
4.006 - Users must be forcibly disconnected when their logon hours expire.	Windows	DISA Windows Server 2008 MS STIG v6r46
4.006 - Users must be forcibly disconnected when their logon hours expire.	Windows	DISA Windows Vista STIG v6r41
4.006 - Users will be forcibly disconnected when their logon hours expire.	Windows	DISA Windows Server 2008 R2 DC STIG v1r34
4.006 - Users will be forcibly disconnected when their logon hours expire.	Windows	DISA Windows Server 2008 R2 MS STIG v1r33
4.028 - The amount of idle time required before suspending a session must be properly set.	Windows	DISA Windows Vista STIG v6r41
4.028 - The amount of idle time required before suspending a session must be properly set.	Windows	DISA Windows Server 2008 MS STIG v6r46
4.028 - The amount of idle time required before suspending a session must be properly set.	Windows	DISA Windows 7 STIG v1r32
4.028 - The amount of idle time required before suspending a session must be properly set.	Windows	DISA Windows Server 2008 DC STIG v6r47
4.028 - The amount of idle time required before suspending a session must be properly set.	Windows	DISA Windows Server 2008 R2 DC STIG v1r34
4.028 - The amount of idle time required before suspending a session must be properly set.	Windows	DISA Windows Server 2008 R2 MS STIG v1r33
4.340 - The system must be configured so that all network connections associated with SSH traffic terminate after a period of inactivity.	Unix	Tenable Fedora Linux Best Practices v2.0.0
5.3.19 Ensure SSH Idle Timeout Interval is configured - ClientAliveCountMax	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.19 Ensure SSH Idle Timeout Interval is configured - ClientAliveInterval	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.4 Ensure default user shell timeout is configured	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.046 - Terminal Services is not configured to set a time limit for disconnected sessions.	Windows	DISA Windows Vista STIG v6r41
5.047 - Terminal Services idle session time limit does not meet the requirement.	Windows	DISA Windows Vista STIG v6r41
AIX7-00-002105 - AIX must config the SSH idle timeout interval	Unix	DISA STIG AIX 7.x v2r8
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMax	Unix	DISA STIG AIX 7.x v2r5
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMax	Unix	DISA STIG AIX 7.x v2r6
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveCountMax	Unix	DISA STIG AIX 7.x v2r3
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveInterval	Unix	DISA STIG AIX 7.x v2r3
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveInterval	Unix	DISA STIG AIX 7.x v2r6
AIX7-00-002105 - AIX must config the SSH idle timeout interval - ClientAliveInterval	Unix	DISA STIG AIX 7.x v2r5
AIX7-00-002105 - AIX must config the SSH idle timeout interval.	Unix	DISA STIG AIX 7.x v2r9
AIX7-00-003002 - AIX must terminate all SSH login sessions after 10 minutes of inactivity - ClientAliveCountMax	Unix	DISA STIG AIX 7.x v2r1
AIX7-00-003002 - AIX must terminate all SSH login sessions after 10 minutes of inactivity - ClientAliveInterval	Unix	DISA STIG AIX 7.x v2r1
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity	Unix	DISA STIG AIX 7.x v2r8
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUT	Unix	DISA STIG AIX 7.x v2r6
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUT	Unix	DISA STIG AIX 7.x v2r1
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUT	Unix	DISA STIG AIX 7.x v2r3
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TIMEOUT	Unix	DISA STIG AIX 7.x v2r5
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUT	Unix	DISA STIG AIX 7.x v2r5
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUT	Unix	DISA STIG AIX 7.x v2r6
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUT	Unix	DISA STIG AIX 7.x v2r1
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity - TMOUT	Unix	DISA STIG AIX 7.x v2r3
AIX7-00-003003 - AIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity.	Unix	DISA STIG AIX 7.x v2r9
AMLS-NM-000240 - Arista MLS must terminate all network connections associated with a device management session at the end of the session.	Arista	DISA STIG Arista MLS DCS-7000 Series NDM V1R2
AOSX-09-000720 - The SSH daemon ClientAliveInterval option must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.9 v1r2
AOSX-09-000721 - The SSH daemon ClientAliveCountMax option must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.9 v1r2
AOSX-09-000722 - The SSH daemon LoginGraceTime must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.9 v1r2
AOSX-10-000720 - The SSH daemon ClientAliveInterval option must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.10 v1r5
AOSX-10-000721 - The SSH daemon ClientAliveCountMax option must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.10 v1r5
AOSX-10-000722 - The SSH daemon LoginGraceTime must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.10 v1r5
AOSX-11-000720 - The SSH daemon ClientAliveInterval option must be set correctly.	Unix	DISA STIG Apple Mac OSX 10.11 v1r6

Detections

Analytics

CCI|CCI-001133

Title

Reference Item Details

Audit Items