STIGQter STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The SUSE operating system must be able to lock the graphical user interface (GUI).

DISA Rule

SV-217107r603262_rule

Vulnerability Number

V-217107

Group Title

SRG-OS-000028-GPOS-00009

Rule Version

SLES-12-010060

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

This command must be run from an X11 session; otherwise, the command will not work correctly.

Configure the SUSE operating system to allow the user to lock the graphical user interface.

Run the following command to configure the SUSE operating system to allow the user to lock the graphical user interface:

# gsettings set org.gnome.desktop.lockdown disable-lock-screen false

Check Contents

Verify the SUSE operating system allows the user to lock the GUI.

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable. This command must be run from an X11 session, otherwise the command will not work correctly.

Run the following command:

# gsettings get org.gnome.desktop.lockdown disable-lock-screen

If the result is "true", this is a finding.

Vulnerability Number

V-217107

Documentable

False

Rule Version

SLES-12-010060

Severity Override Guidance

Verify the SUSE operating system allows the user to lock the GUI.

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable. This command must be run from an X11 session, otherwise the command will not work correctly.

Run the following command:

# gsettings get org.gnome.desktop.lockdown disable-lock-screen

If the result is "true", this is a finding.

Check Content Reference

M

Target Key

4033

Comments