An error occurred:

Check: 5.046

Windows 2003 DC STIG: 5.046 (in version v6 r40)

Title

Terminal Services is not configured to set a time limit for disconnected sessions. (Cat II impact)

Discussion

This setting controls how long a session will remain open if it is unexpectedly terminated. Such sessions should be terminated as soon as possible.

Check Content

Fix Text

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Terminal Services -> Sessions “Set Time Limit for Disconnected Sessions” to “Enabled”, and the “End a disconnected session” to “1 minute".

Additional Identifiers

Rule ID: SV-29104r1_rule

Vulnerability ID: V-3457

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001133

Terminate the network connection associated with a communications session at the end of the session or after an organization-defined time period of inactivity.
CCI-002361

Automatically terminate a user session after organization-defined conditions or trigger events requiring session disconnect.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-12

Session Termination
SC-10

Network Disconnect