Terminal Services is not configured to set a time limit for disconnected sessions (Terminal Server Role).

From Windows 2008 Domain Controller Security Technical Implementation Guide

Part of TS/RDS - Time Limit for Disc. Session

Associated with IA controls: ECSC-1

SV-29105r1_rule Terminal Services is not configured to set a time limit for disconnected sessions (Terminal Server Role).

Vulnerability discussion

This setting controls how long a session will remain open if it is unexpectedly terminated. Such sessions should be terminated as soon as possible.

Check content

Fix text

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Terminal Services -> Terminal Server -> Session Time Limits “Set Time Limit for Disconnected Sessions” to “Enabled”, and the “End a disconnected session” set to “1 minute".

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer