STIGQter: STIG Summary: Application Server Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 23 Oct 2020:

The application server management interface must display an explicit logout message to users indicating the reliable termination of authenticated communications sessions.

DISA Rule

SV-204779r508029_rule

Vulnerability Number

V-204779

Group Title

SRG-APP-000297

Rule Version

SRG-APP-000297-AS-000188

Severity

CAT II

CCI(s)

• CCI-002364 - The information system displays an explicit logout message to users indicating the reliable termination of authenticated communications sessions.

Weight

10

Fix Recommendation

Configure the application server management interface to display an explicit logout message to users.

Check Contents

Review application server documentation and configuration settings to determine if the application server management interface displays a logout message.

If the application server management interface does not display a logout message, this is a finding.

Vulnerability Number

V-204779

Documentable

False

Rule Version

SRG-APP-000297-AS-000188

Severity Override Guidance

Review application server documentation and configuration settings to determine if the application server management interface displays a logout message.

If the application server management interface does not display a logout message, this is a finding.

Check Content Reference

M

Target Key

2900

Comments