UCF STIG Viewer Logo

The Mainframe Product must prohibit the use of cached authenticators after one hour.


Overview

Finding ID Version Rule ID IA Controls Severity
V-68397 SRG-APP-000400-MFP-000241 SV-82887r1_rule Medium
Description
If cached authentication information is out of date, the validity of the authentication information may be questionable.
STIG Date
Mainframe Product Security Requirements Guide 2019-12-12

Details

Check Text ( C-68929r1_chk )
If the Mainframe Product has no function or capability for user logon, this is not applicable.

If the Mainframe Product employs an external security manager for all account management functions, this is not applicable.

Examine user account management configurations.

If the Mainframe Product is configured to prohibit the use of cached authenticators after one hour, this is not a finding.
Fix Text (F-74513r1_fix)
Configure the Mainframe Product account management settings to prohibit the use of cached authenticators after one hour.