NIST 800 -171 3.1.11

Terminate (automatically) a user session after a defined condition.

The object of this control is to end a user session after a timeout period. This can be done again by using the GPO, Group Policy Object capabilities in windows. You can also leverage your other products that have timeout features to accomplish this goal. Most major product categories that understand that they need to comply with this requirement have commands that allow you to set this variable. Start buying and using a product that has these features if you are going to be looking to comply with this requirement. You will need to replace equipment that does not have these features or capabilities. So start out by making this a requirement. Describe this functionality and what equipment employs it in your security policy document.

Subscribe to our Podcast