XenDesktop License Server must prohibit the use of cached authenticators after an organization-defined time period.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-81419 | SRG-APP-000400 | CXEN-LS-000880 | SV-96133r1_rule | 2019-12-12 | 1 |
| Description |
|---|
| If cached authentication information is out of date, the validity of the authentication information may be questionable. |
| ℹ️ Check |
|---|
| 1. Click "Administration" and select the "Server Configuration" tab. 2. Click the "Web Server Configuration" bar and "Session Timeout". 3. Verify Session Timeout is set to “10”. If Session Timeout is not set to “10”, this is a finding. |
| ✔️ Fix |
|---|
| 1. Click "Administration" and select the "Server Configuration" tab. 2. Click the Web Server Configuration bar. 3. For Session Timeout, enter the value of “10” (minutes). |