Check: SRG-OS-000383-GPOS-00166
General Purpose Operating System SRG:
SRG-OS-000383-GPOS-00166
(in versions v3 r1 through v1 r6)
Title
The operating system must prohibit the use of cached authenticators after one day. (Cat II impact)
Discussion
If cached authentication information is out-of-date, the validity of the authentication information may be questionable.
Check Content
Verify the operating system prohibits the use of cached authenticators after one day. If it does not, this is a finding.
Fix Text
Configure the operating system to prohibit the use of cached authenticators after one day.
Additional Identifiers
Rule ID: SV-203733r958828_rule
Vulnerability ID: V-203733
Group Title: SRG-OS-000383
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-002007 |
Prohibit the use of cached authenticators after an organization-defined time period. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
IA-5(13) |
Expiration of Cached Authenticators |