Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-68397 | SRG-APP-000400-MFP-000241 | SV-82887r1_rule | Medium |
Description |
---|
If cached authentication information is out of date, the validity of the authentication information may be questionable. |
STIG | Date |
---|---|
Mainframe Product Security Requirements Guide | 2019-12-12 |
Check Text ( C-68929r1_chk ) |
---|
If the Mainframe Product has no function or capability for user logon, this is not applicable. If the Mainframe Product employs an external security manager for all account management functions, this is not applicable. Examine user account management configurations. If the Mainframe Product is configured to prohibit the use of cached authenticators after one hour, this is not a finding. |
Fix Text (F-74513r1_fix) |
---|
Configure the Mainframe Product account management settings to prohibit the use of cached authenticators after one hour. |