Title

Network management/maintenance ports are not configured to “force out” or drop any user session that is interrupted for more than 15 seconds. (Cat II impact)

Discussion

Requirement: The IAO will ensure that network connected management ports drop a connection that is interrupted for any reason within 15 seconds. Network ports that are interrupted due to link disconnection, power failure or other reasons must end any session using that connection. This will prevent a user from ending a session without logging off and leaving the maintenance port available with an active session that might allow unauthorized use by someone other than the authenticated user.

Check Content

Interview the IAO and/or SA to confirm compliance through discussion, review of site policy and procedures, diagrams, documentation, configuration files, logs, records, DAA/other approvals, etc as applicable

Fix Text

Implement processes / procedures, generate documents, and/or adjust configuration(s) / architecture, as necessary to comply with policy.

Additional Identifiers

Rule ID: SV-9011r1_rule

Vulnerability ID: V-8516

Group Title: Network Mgmt. Ports do not drop interrupted sessio

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.