STIGQter: STIG Summary: ForeScout CounterACT NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 12 Sep 2017:

CounterACT must limit the number of concurrent sessions to an organization-defined number for each administrator account type.

DISA Rule

SV-90955r1_rule

Vulnerability Number

V-76267

Group Title

SRG-APP-000001-NDM-000200

Rule Version

CACT-NM-000051

Severity

CAT III

CCI(s)

CCI-000054 - The information system limits the number of concurrent sessions for each organization-defined account and/or account type to an organization-defined number of sessions.

Weight

Fix Recommendation

Configure CounterACT to require a limit of one session per user.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Console and Options >> Password and Login.
3. Ensure the "allow only one login session per user" radio button is selected and configured to either Log out existing session or Deny new logon attempts.

Check Contents

Determine if CounterACT requires a limit of one session per user. This requirement may be verified by demonstration or configuration review.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Console and Options >> Password and Login.
3. Verify the "allow only one login session per user" radio button is selected and configured to either Log out existing session or Deny new logon attempts.

If CounterACT does not enforce one session per user, this is a finding.

CounterACT must limit the number of concurrent sessions to an organization-defined number for each administrator account type.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments