The network element must terminate the connection associated with a communications session at the end of the session or after an organizationally defined time period of inactivity.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000213-RTR-NA	SRG-NET-000213-RTR-NA	SRG-NET-000213-RTR-NA_rule		Medium

Description
Terminating an idle session within a short time period reduces the window of opportunity for unauthorized personnel to take control of a management session enabled between the managed network element and a PC or terminal server when the later has been left unattended. In addition quickly terminating an idle session will free up resources committed by the managed network element as well as reduce the risk of a management session from being hijacked. This requirement is applicable to network device management and is not applicable to the routing function.

Description

Terminating an idle session within a short time period reduces the window of opportunity for unauthorized personnel to take control of a management session enabled between the managed network element and a PC or terminal server when the later has been left unattended. In addition quickly terminating an idle session will free up resources committed by the managed network element as well as reduce the risk of a management session from being hijacked. This requirement is applicable to network device management and is not applicable to the routing function.

STIG	Date
Router Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000213-RTR-NA_chk )
This requirement is NA for router.

Fix Text (F-SRG-NET-000213-RTR-NA_fix)
This requirement is NA for router.