STIGQter STIGQter: STIG Summary: General Purpose Operating System SRG Version: 1 Release: 6 Benchmark Date: 26 Jul 2019:

The operating system must enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

DISA Rule

SV-70839r1_rule

Vulnerability Number

V-56579

Group Title

SRG-OS-000021-GPOS-00005

Rule Version

SRG-OS-000021-GPOS-00005

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the operating system to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

Check Contents

Verify that the operating system enforces the limit of three consecutive invalid logon attempts by a user during a 15-minute time period. If it does not, this is a finding.

Vulnerability Number

V-56579

Documentable

False

Rule Version

SRG-OS-000021-GPOS-00005

Severity Override Guidance

Verify that the operating system enforces the limit of three consecutive invalid logon attempts by a user during a 15-minute time period. If it does not, this is a finding.

Check Content Reference

M

Target Key

2739

Comments