Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The WLAN inactive session timeout must be set for 30 minutes or less.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-243218 | WLAN-NW-000300 | SV-243218r720109_rule | Medium |
| Description |
|---|
| A WLAN session that never terminates due to inactivity may allow an opening for an adversary to highjack the session to obtain access to the network. |
| STIG | Date |
|---|---|
| Network WLAN AP-NIPR Platform Security Technical Implementation Guide | 2021-04-16 |
Details
| Check Text ( C-46493r720107_chk ) |
|---|
| 1. Review the relevant configuration screen of the WLAN controller or access point. 2. Verify the session timeout setting is set for 30 minutes or less. If this session timeout is not set to 30 minutes or less for the entire WLAN or the WLAN does not have the capability to enable the session timeout feature, this is a finding. |
| Fix Text (F-46450r720108_fix) |
|---|
| Set the WLAN inactive session timeout to 30 minutes or less. |