Check: 3.047
Win7 Audit:
3.047
(in version v1 r16)
Title
The smart card removal option is set to take no action. (Cat II impact)
Discussion
Configuring a system to lock the workstation when a smart card is removed will ensure the system is inaccessible when unattended.
Check Content
Fix Text
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “Interactive logon: Smart card removal behavior” to “Lock Workstation” or “Force Logoff”.
Additional Identifiers
Rule ID: SV-25050r1_rule
Vulnerability ID: V-1157
Group Title: Smart Card Removal Option
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |