Check: SRG-OS-000383-VMM-001570
Virtual Machine Manager SRG:
SRG-OS-000383-VMM-001570
(in versions v2 r2 through v1 r3)
Title
The VMM must prohibit the use of cached authenticators after one day. (Cat II impact)
Discussion
If cached authentication information is out of date, the validity of the authentication information may be questionable.
Check Content
Verify the VMM prohibits the use of cached authenticators after one day. If it does not, this is a finding.
Fix Text
Configure the VMM to prohibit the use of cached authenticators after one day.
Additional Identifiers
Rule ID: SV-207486r958828_rule
Vulnerability ID: V-207486
Group Title: SRG-OS-000383
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-002007 |
Prohibit the use of cached authenticators after an organization-defined time period. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| IA-5(13) |
Expiration of Cached Authenticators |