Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-70539 | MICR-9X-110150 | SV-85161r1_rule | Medium |
Description |
---|
If communications sessions remain open for extended periods of time even when unused, there is the potential for an adversary to highjack the session and use it to gain access to the device or networks to which it is attached. Terminating sessions after a certain period of inactivity is a method for mitigating the risk of this vulnerability. SFR ID: FMT_SMF.1.1(1) Refinement |
STIG | Date |
---|---|
MobileIron Core v9.x MDM Security Technical Implementation Guide | 2019-05-06 |
Check Text ( C-70939r1_chk ) |
---|
Review MobileIron Core Server documentation and configuration settings to determine if the server appliance terminates the network connection associated with a communications session at the end of any transaction with the MDM agent or other server or after 10 minutes of inactivity. SSH to MobileIron Core from any SSH client and enter the administrator credentials set up when the MobileIron Core was installed. If communications are not terminated at the end of a session or after 10 minutes of inactivity, this is a finding. |
Fix Text (F-76777r1_fix) |
---|
Configure MobileIron Core Server to timeout after 10 minutes of inactivity. 1. SSH to MobileIron Core from any SSH client. 2. Enter the administrator credentials you set when you installed MobileIron Core. 3. Type 'timeout 10' 4. exit |