The terminal or workstation must lock out after a maximum of 15 minutes of inactivity, requiring the account password to resume.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-256883 | SRG-OS-000029-GPOS-00010 | HMC0150 | SV-256883r958402_rule | 2024-06-24 | 2 |
| Description |
|---|
| If the system, workstation, or terminal does not lock the session after more than15 minutes of inactivity, requiring a password to resume operations, the system or individual data could be compromised by an alert intruder who could exploit the oversight. |
| ℹ️ Check |
|---|
| Have the System Administrator display the User Properties window on the Hardware Management Console and check that the timeout minutes are set to a maximum of 15. If the Verify Timeout minutes are set to more than 15, then this is a FINDING. |
| ✔️ Fix |
|---|
| The System Administrator will display the User Properties window and will ensure that the Verify timeout minutes are set to a maximum of 15. |