STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:SV-230352r646876_rule
V-230352
SRG-OS-000029-GPOS-00010
RHEL-08-020060
CAT II
10
Configure the operating system to initiate a screensaver after a 15-minute period of inactivity for graphical user interfaces.
Create a database to contain the system-wide screensaver settings (if it does not already exist) with the following command:
$ sudo touch /etc/dconf/db/local.d/00-screensaver
Edit /etc/dconf/db/local.d/00-screensaver and add or update the following lines:
[org/gnome/desktop/session]
# Set the lock time out to 900 seconds before the session is considered idle
idle-delay=uint32 900
Update the system databases:
$ sudo dconf update
Verify the operating system initiates a session lock after a 15-minute period of inactivity for graphical user interfaces with the following commands:
This requirement assumes the use of the RHEL 8 default graphical user interface, Gnome Shell. If the system does not have any graphical user interface installed, this requirement is Not Applicable.
$ sudo gsettings get org.gnome.desktop.session idle-delay
uint32 900
If "idle-delay" is set to "0" or a value greater than "900", this is a finding.
V-230352
False
RHEL-08-020060
Verify the operating system initiates a session lock after a 15-minute period of inactivity for graphical user interfaces with the following commands:
This requirement assumes the use of the RHEL 8 default graphical user interface, Gnome Shell. If the system does not have any graphical user interface installed, this requirement is Not Applicable.
$ sudo gsettings get org.gnome.desktop.session idle-delay
uint32 900
If "idle-delay" is set to "0" or a value greater than "900", this is a finding.
M
2921