Upon successful logon, the IDPS must display the date and time of the last logon of the user.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000048-IDPS-000064 | SRG-NET-000048-IDPS-000064 | SRG-NET-000048-IDPS-000064_rule | Low |
| Description |
|---|
| Providing users with information regarding the date and time of their last successful login allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators. |
| STIG | Date |
|---|---|
| IDPS Security Requirements Guide (SRG) | 2012-03-08 |
Details
| Check Text ( C-43192_chk ) |
|---|
| Have the administrator connect to the management console using the GUI. Note if the date and time of last login is displayed. Have the administrator connect to the maintenance console using the SSH interface. Note if the date and time of last login is displayed. Repeat the above steps for each sensor. If the date and time of the last login of the user is not displayed, this is a finding. |
| Fix Text (F-43192_fix) |
|---|
| Control applies to classified systems. Configure the IDPS management console GUI and SSH interface to display the date and time of the last login by the user. |