Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The Lifetime Minutes and Renewal Threshold Minutes Login Session Controls on MKE must be set.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-260903 | CNTR-MK-000940 | SV-260903r966066_rule | Medium |
| Description |
|---|
| The "Lifetime Minutes" and "Renewal Threshold Minutes" login session controls in MKE are part of security features that help manage user sessions within the MKE environment. Setting these controls is essential. MKE must terminate all network connections associated with a communications session at the end of the session, or as follows: For in-band management sessions (privileged sessions), the session must be terminated after 10 minutes of inactivity. |
| STIG | Date |
|---|---|
| Mirantis Kubernetes Engine Security Technical Implementation Guide | 2024-04-10 |
Details
| Check Text ( C-64632r966064_chk ) |
|---|
| Log in to the MKE web UI and navigate to admin >> Admin Settings >> Authentication & Authorization. Ensure that "Lifetime Minutes" is set to "10" and "Renewal Threshold Minutes" is set to "0". If these settings are not configured as specified, this is a finding. |
| Fix Text (F-64540r966065_fix) |
|---|
| Log in to the MKE web UI and navigate to admin >> Admin Settings >> Authentication & Authorization. - Below Lifetime Minutes, enter "10". - Below Renewal Threshold, enter "0". - Click "Save". |