STIGQter STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The SUSE operating system must initiate a session lock after a 15-minute period of inactivity for the graphical user interface.

DISA Rule

SV-217109r646684_rule

Vulnerability Number

V-217109

Group Title

SRG-OS-000029-GPOS-00010

Rule Version

SLES-12-010080

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the SUSE operating system initiates a session lock after a 15-minute period of inactivity via the graphical user interface by running the following command:

Note: This command must be run from an X11 session, otherwise the command will not work correctly.

> sudo gsettings set org.gnome.desktop.session idle-delay 900

Check Contents

Verify the SUSE operating system initiates a session lock after a 15-minute period of inactivity via the graphical user interface by running the following command:

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable.

> sudo gsettings get org.gnome.desktop.session idle-delay

uint32 900

If the command does not return a value less than or equal to "900", this is a finding.

Vulnerability Number

V-217109

Documentable

False

Rule Version

SLES-12-010080

Severity Override Guidance

Verify the SUSE operating system initiates a session lock after a 15-minute period of inactivity via the graphical user interface by running the following command:

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable.

> sudo gsettings get org.gnome.desktop.session idle-delay

uint32 900

If the command does not return a value less than or equal to "900", this is a finding.

Check Content Reference

M

Target Key

4033

Comments