STIGQter: STIG Summary: Symantec ProxySG NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020: STIGQter: STIG Summary: Symantec ProxySG NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:SV-104543r1_rule
V-94713
SRG-APP-000190-NDM-000267
SYMP-NM-000310
CAT I
10
Configure the device management session inactivity timeouts to "10" minutes.
1. Log on to the Web Management Console.
2. Click Configuration >> Authentication >> Console Access >> Console Account.
3. Set "Enforce Web auto-logout" and "Enforce CLI auto-logout" to "10" minutes.
If there is a documented and validated mission requirement which allows the inactivity period to exceed "10" minutes, this is not a finding.
Verify the device management session inactivity timeouts are set to "10" minutes.
1. Log on to the Web Management Console.
2. Click Configuration >> Authentication >> Console Access >> Console Account.
3. Confirm that the "Enforce Web auto-logout" and "Enforce CLI auto-logout" options are set to "10" minutes.
If Symantec ProxySG is not configured to terminate the management session after "10" minutes of inactivity, this is a finding.
V-94713
False
SYMP-NM-000310
If there is a documented and validated mission requirement which allows the inactivity period to exceed "10" minutes, this is not a finding.
Verify the device management session inactivity timeouts are set to "10" minutes.
1. Log on to the Web Management Console.
2. Click Configuration >> Authentication >> Console Access >> Console Account.
3. Confirm that the "Enforce Web auto-logout" and "Enforce CLI auto-logout" options are set to "10" minutes.
If Symantec ProxySG is not configured to terminate the management session after "10" minutes of inactivity, this is a finding.
M
3517