STIGQter STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 26 Jul 2019: The Juniper SRX Services Gateway must terminate a device management session after 10 minutes of inactivity, except to fulfill documented and validated mission requirements.

DISA Rule

SV-81027r1_rule

Vulnerability Number

V-66537

Group Title

SRG-APP-000190-NDM-000267

Rule Version

JUSX-DM-000156

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure all login classes with an idle timeout value.

[edit]
set system login-class <class name> idle-timeout 10

All users must be set to a login-class; however, to ensure that the CLI is set to a default timeout value, enter the following in operational mode:

set cli idle-timeout 10

Check Contents

Verify idle-timeout is set for 10 minutes.

[edit]
show system login

If a timeout value of 10 or less is not set for each class, this is a finding.

Vulnerability Number

V-66537

Documentable

False

Rule Version

JUSX-DM-000156

Severity Override Guidance

Verify idle-timeout is set for 10 minutes.

[edit]
show system login

If a timeout value of 10 or less is not set for each class, this is a finding.

Check Content Reference

M

Target Key

3039

Comments