STIGQter: STIG Summary: Voice Video Session Management Security Requirements Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Voice Video Session Manager must automatically disable Voice Video endpoint user access after a 35 day period of account inactivity.

DISA Rule

SV-206810r508661_rule

Vulnerability Number

V-206810

Group Title

SRG-NET-000004

Rule Version

SRG-NET-000004-VVSM-00010

Severity

CAT II

CCI(s)

• CCI-000017 - The information system automatically disables inactive accounts after an organization-defined time period.

Weight

10

Fix Recommendation

Configure the Voice Video Session Manager too automatically disable Voice Video endpoint user access after a 35 day period of account inactivity.

Check Contents

Verify the Voice Video Session Manager automatically disables Voice Video endpoint user access after a 35 day period of account inactivity. This requirement refers to users rather than endpoints.

If the Voice Video Session Manager does not automatically disable Voice Video endpoint user access after a 35 day period of account inactivity, this is a finding.

Vulnerability Number

V-206810

Documentable

False

Rule Version

SRG-NET-000004-VVSM-00010

Severity Override Guidance

Verify the Voice Video Session Manager automatically disables Voice Video endpoint user access after a 35 day period of account inactivity. This requirement refers to users rather than endpoints.

If the Voice Video Session Manager does not automatically disable Voice Video endpoint user access after a 35 day period of account inactivity, this is a finding.

Check Content Reference

M

Target Key

2916

Comments