NIST 800-53 Rev 5
424 controls available
AC-12moderatehigh
Session Termination
Access Control
Control Statement
Automatically terminate a user session after {{ insert: param, ac-12_odp }}.
Discussion
Session termination addresses the termination of user-initiated logical sessions (in contrast to [SC-10](#sc-10) , which addresses the termination of network connections associated with communications sessions (i.e., network disconnect)). A logical session (for local, network, and remote access) is initiated whenever a user (or process acting on behalf of a user) accesses an organizational system. Such user sessions can be terminated without terminating network sessions. Session termination ends all processes associated with a user’s logical session except for those processes that are specifically created by the user (i.e., session owner) to continue after the session is terminated. Conditions or trigger events that require automatic termination of the session include organization-defined periods of user inactivity, targeted responses to certain types of incidents, or time-of-day restrictions on system use.
- Framework
- NIST SP 800-53 Rev 5
- Family
- Access Control
- Baselines
- moderate, high
Related Frameworks
4 paths across 2 frameworks
Related Frameworks
NIST 800-1711 mapping
3.1.11
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI3 mappings
CCI-002254
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002360
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002361
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
91 STIGs reach this control through 8 CCIs. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
4 STIGs
Operating System — Desktop
4 STIGsApple macOS 14 (Sonoma) Security Technical Implementation Guide
22024-12-041 of 155 findings match
M1
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
12025-05-051 of 161 findings match
M1
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
V1R72026-02-061 of 160 findings match
M1
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V1R22026-02-111 of 160 findings match
M1
Operating System — Server
9 STIGs
Operating System — Server
9 STIGsGeneral Purpose Operating System Security Requirements Guide
32024-12-043 of 198 findings match
M3
General Purpose Operating System Security Requirements Guide
V3R32025-09-223 of 203 findings match
M3
IBM AIX 7.x Security Technical Implementation Guide
32024-08-163 of 283 findings match
L3
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-063 of 283 findings match
L3
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-161 of 172 findings match
M1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-161 of 187 findings match
M1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-061 of 188 findings match
M1
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-161 of 194 findings match
M1
Show 1 more STIG in this category →Hide additional STIGs
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-061 of 194 findings match
M1
Operating System — Mainframe
9 STIGs
Operating System — Mainframe
9 STIGsCA IDMS Security Technical Implementation Guide
V2R12024-09-138 of 74 findings match
M8
Mainframe Product Security Requirements Guide
32024-12-053 of 193 findings match
M3
Mainframe Product Security Requirements Guide
V3R42025-09-103 of 194 findings match
M3
IBM z/OS ACF2 Security Technical Implementation Guide
92025-06-241 of 226 findings match
M1
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-091 of 225 findings match
M1
IBM z/OS RACF Security Technical Implementation Guide
92025-06-241 of 224 findings match
M1
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-091 of 222 findings match
M1
IBM z/OS TSS Security Technical Implementation Guide
92025-06-241 of 231 findings match
M1
Show 1 more STIG in this category →Hide additional STIGs
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-091 of 230 findings match
M1
Network Device
15 STIGs
Network Device
15 STIGsApplication Layer Gateway Security Requirements Guide
22024-12-043 of 155 findings match
M3
Application Layer Gateway Security Requirements Guide
V2R32025-09-153 of 160 findings match
M3
IBM DataPower Network Device Management Security Technical Implementation Guide
V1R22017-10-053 of 64 findings match
M3
Enterprise Voice, Video, and Messaging Endpoint Security Requirements Guide
12024-08-022 of 47 findings match
M2
Enterprise Voice, Video, and Messaging Endpoint Security Requirements Guide
V1R32025-10-012 of 47 findings match
M2
Juniper SRX Services Gateway VPN Security Technical Implementation Guide
V3R22024-12-202 of 28 findings match
M2
Network Device Management Security Requirements Guide
V5R32025-02-112 of 104 findings match
M2
Network Device Management Security Requirements Guide
V5R42025-09-102 of 105 findings match
M2
Show 7 more STIGs in this category →Hide additional STIGs
Virtual Private Network (VPN) Security Requirements Guide
32024-12-192 of 82 findings match
M2
Virtual Private Network (VPN) Security Requirements Guide
V3R42025-09-102 of 92 findings match
M2
Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide
12024-03-111 of 61 findings match
M1
Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide
V1R22025-12-301 of 60 findings match
M1
HP FlexFabric Switch NDM Security Technical Implementation Guide
V1R42025-06-121 of 79 findings match
M1
HPE Alletra Storage ArcusOS Web Server Security Technical Implementation Guide
V1R12026-03-031 of 6 findings match
M1
Riverbed NetIM OS Security Technical Implementation Guide
V1R12025-10-021 of 154 findings match
M1
Database
15 STIGs
Database
15 STIGsDatabase Security Requirements Guide
42024-12-042 of 142 findings match
M2
Database Security Requirements Guide
V4R52026-02-262 of 142 findings match
M2
MariaDB Enterprise 10.x Security Technical Implementation Guide
22024-12-052 of 110 findings match
M2
MariaDB Enterprise 10.x Security Technical Implementation Guide
V2R52026-03-022 of 107 findings match
M2
Crunchy Data Postgres 16 Security Technical Implementation Guide
12024-06-171 of 111 findings match
M1
Crunchy Data Postgres 16 Security Technical Implementation Guide
V1R22026-02-271 of 111 findings match
M1
Crunchy Data PostgreSQL Security Technical Implementation Guide
V3R12024-08-271 of 113 findings match
M1
EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide
V2R12024-08-271 of 118 findings match
M1
Show 7 more STIGs in this category →Hide additional STIGs
IBM DB2 V10.5 LUW Security Technical Implementation Guide
V2R12023-06-111 of 93 findings match
M1
Microsoft Azure SQL Database Security Technical Implementation Guide
V2R32025-06-111 of 76 findings match
M1
MongoDB Enterprise Advanced 7.x Security Technical Implementation Guide
V1R12024-09-271 of 50 findings match
M1
MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide
V1R12026-02-201 of 55 findings match
L1
Oracle Database 19c Security Technical Implementation Guide
12025-06-241 of 96 findings match
M1
Oracle Database 19c Security Technical Implementation Guide
V1R52026-02-251 of 96 findings match
M1
Oracle MySQL 8.0 Security Technical Implementation Guide
V2R22024-09-041 of 100 findings match
M1
Web / Application Server
19 STIGs
Web / Application Server
19 STIGsApplication Security and Development Security Technical Implementation Guide
62025-02-125 of 286 findings match
M4L1
Application Security and Development Security Technical Implementation Guide
V6R42025-09-095 of 286 findings match
M4L1
Application Server Security Requirements Guide
42025-02-113 of 128 findings match
M3
Application Server Security Requirements Guide
V4R42025-09-103 of 137 findings match
M3
HPE 3PAR SSMC Web Server Security Technical Implementation Guide
V2R12024-05-303 of 19 findings match
M3
Apache Server 2.4 Windows Server Security Technical Implementation Guide
32025-02-122 of 54 findings match
M2
Apache Server 2.4 Windows Server Security Technical Implementation Guide
V3R42026-02-252 of 49 findings match
M2
Apache Server 2.4 Windows Site Security Technical Implementation Guide
22025-02-122 of 36 findings match
M2
Show 11 more STIGs in this category →Hide additional STIGs
Microsoft IIS 10.0 Site Security Technical Implementation Guide
22025-06-092 of 43 findings match
M2
Microsoft IIS 10.0 Site Security Technical Implementation Guide
V2R152026-02-262 of 44 findings match
M2
Web Server Security Requirements Guide
42025-02-122 of 124 findings match
M2
Web Server Security Requirements Guide
V4R42025-09-102 of 126 findings match
M2
Apache Server 2.4 UNIX Server Security Technical Implementation Guide
32024-12-041 of 47 findings match
M1
Apache Server 2.4 UNIX Server Security Technical Implementation Guide
V3R22024-12-041 of 47 findings match
M1
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
12018-08-241 of 76 findings match
M1
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
V2R12026-02-261 of 77 findings match
M1
Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide
V2R62023-12-181 of 64 findings match
L1
Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide
V2R22024-12-061 of 68 findings match
M1
Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide
V2R32025-05-141 of 66 findings match
L1
Virtualization / Container
9 STIGs
Virtualization / Container
9 STIGsVirtual Machine Manager Security Requirements Guide
22024-12-063 of 193 findings match
M3
Virtual Machine Manager Security Requirements Guide
V2R32025-09-103 of 198 findings match
M3
Container Platform Security Requirements Guide
22025-05-151 of 187 findings match
L1
Container Platform Security Requirements Guide
V2R42025-09-101 of 188 findings match
L1
Nutanix Acropolis Application Server Security Technical Implementation Guide
V1R12026-02-241 of 31 findings match
M1
Nutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-241 of 106 findings match
M1
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-151 of 83 findings match
L1
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-041 of 83 findings match
L1
Show 1 more STIG in this category →Hide additional STIGs
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V2R12024-07-111 of 106 findings match
M1
Endpoint Security Management
11 STIGs
Endpoint Security Management
11 STIGsCentral Log Server Security Requirements Guide
32024-12-043 of 125 findings match
M2L1
Central Log Server Security Requirements Guide
V3R42026-02-123 of 127 findings match
M2L1
Unified Endpoint Management Server Security Requirements Guide
22024-12-093 of 137 findings match
M3
Unified Endpoint Management Server Security Requirements Guide
V2R42025-09-103 of 138 findings match
M3
BlackBerry Enterprise Mobility Server 2.x Security Technical Implementation Guide
V1R32020-05-151 of 23 findings match
M1
BlackBerry Enterprise Mobility Server 3.x Security Technical Implementation Guide
V1R22023-05-171 of 27 findings match
M1
Forescout Network Access Control Security Technical Implementation Guide
V2R42025-06-121 of 26 findings match
M1
Ivanti EPMM Server Security Technical Implementation Guide
V3R12024-07-301 of 26 findings match
M1
Show 3 more STIGs in this category →Hide additional STIGs
Tanium 7.x Application on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 75 findings match
M1
Tanium 7.x Operating System on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 31 findings match
M1
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-141 of 98 findings match
M1