STIGQter STIGQter: STIG Summary: SUSE Linux Enterprise Server 15 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

The SUSE operating system must initiate a session lock after a 15-minute period of inactivity for the graphical user interface (GUI).

DISA Rule

SV-234812r622137_rule

Vulnerability Number

V-234812

Group Title

SRG-OS-000029-GPOS-00010

Rule Version

SLES-15-010120

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the SUSE operating system to initiate a session lock after a 15-minute period of inactivity of the GUI by running the following command:

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable. This command must be run from an X11 session, otherwise the command will not work correctly.

> sudo gsettings set org.gnome.desktop.session idle-delay 900

Check Contents

Verify the SUSE operating system initiates a session lock after a 15-minute period of inactivity via the GUI by running the following command:

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable.

> sudo gsettings get org.gnome.desktop.session idle-delay

uint32 900

If the command does not return a value less than or equal to "900", this is a finding.

Vulnerability Number

V-234812

Documentable

False

Rule Version

SLES-15-010120

Severity Override Guidance

Verify the SUSE operating system initiates a session lock after a 15-minute period of inactivity via the GUI by running the following command:

Note: If the system does not have a graphical user interface installed, this requirement is Not Applicable.

> sudo gsettings get org.gnome.desktop.session idle-delay

uint32 900

If the command does not return a value less than or equal to "900", this is a finding.

Check Content Reference

M

Target Key

5274

Comments