STIGQter: STIG Summary: Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019: STIGQter: STIG Summary: Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019:SV-77475r1_rule
V-62985
SRG-APP-000190-NDM-000267
RICX-DM-000137
CAT II
10
Configure RiOS to terminate a device management session at the end of the session, or after 10 minutes of inactivity.
Navigate to the device CLI
Type: enable
Type: conf t
Type: web auto-logout 10
Type: write memory
-- or --
Navigate to the device Management Console
Navigate to Configure >> Security >> Web Settings
Set the value of "Web Inactivity Timeout (minutes):" to "10"
Click "Apply"
Navigate to the top of the web page and click "Save" to save these settings permanently
Verify that RiOS is configured to terminate a device management session at the end of the session, or after 10 minutes of inactivity.
Navigate to the device CLI
Type: enable
Type: show web
Verify that "Inactivity Timeout:" is set to "10" minutes
-- or --
Navigate to the device Management Console
Navigate to Configure >> Security >> Web Settings
Verify that "Web Inactivity Timeout (minutes):" is set to "10"
If "Inactivity Timeout" or "Web Inactivity Timeout (minutes)" is not set to "10", this is a finding.
V-62985
False
RICX-DM-000137
Verify that RiOS is configured to terminate a device management session at the end of the session, or after 10 minutes of inactivity.
Navigate to the device CLI
Type: enable
Type: show web
Verify that "Inactivity Timeout:" is set to "10" minutes
-- or --
Navigate to the device Management Console
Navigate to Configure >> Security >> Web Settings
Verify that "Web Inactivity Timeout (minutes):" is set to "10"
If "Inactivity Timeout" or "Web Inactivity Timeout (minutes)" is not set to "10", this is a finding.
M
2931