The terminal or workstation must lock out after a maximum of 15 minutes of inactivity, requiring the account password to resume.

From IBM Hardware Management Console (HMC) STIG

Associated with IA controls: PESL-1

Associated with: CCI-000057

SV-30029r2_rule The terminal or workstation must lock out after a maximum of 15 minutes of inactivity, requiring the account password to resume.

Vulnerability discussion

If the system, workstation, or terminal does not lock the session after more than15 minutes of inactivity, requiring a password to resume operations, the system or individual data could be compromised by an alert intruder who could exploit the oversight.

Check content

Have the System Administrator display the User Properties window on the Hardware Management Console and check that the timeout minutes are set to a maximum of 15. If the Verify Timeout minutes are set to more than 15, then this is a FINDING.

Fix text

The System Administrator will display the User Properties window and will ensure that the Verify timeout minutes are set to a maximum of 15.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.