STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must initiate a session lock after a 15-minute period of inactivity.

DISA Rule

SV-82601r1_rule

Vulnerability Number

V-68111

Group Title

SRG-APP-000003-MFP-000003

Rule Version

SRG-APP-000003-MFP-000003

Severity

CAT II

CCI(s)

CCI-000057 - The information system initiates a session lock after the organization-defined time period of inactivity.

Weight

Fix Recommendation

Configure the Mainframe Product to perform a session lock after 15 minutes of inactivity.

Check Contents

If the Mainframe Product has no data screen capability, this requirement is not applicable.

Examine configuration parameters to determine whether the Mainframe Product performs a session lock after 15 minutes of inactivity. If it does not, this is a finding.

Vulnerability Number

V-68111

Documentable

False

Rule Version

SRG-APP-000003-MFP-000003

Severity Override Guidance

Check Content Reference

Target Key

3061

The Mainframe Product must initiate a session lock after a 15-minute period of inactivity.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments