STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Trend Micro TippingPoint NDM Security Technical Implementation Guide

V-242231

CAT III (Low)

The TippingPoint SMS must limit the maximum number of concurrent active sessions to one for the account of last resort.

Rule ID

SV-242231r960735_rule

STIG

Trend Micro TippingPoint NDM Security Technical Implementation Guide

Version

V2R3

CCIs

CCI-000054

Discussion

Limiting the number of allowed administrators and sessions per administrator based on account type, role, or access type is helpful in limiting risks related to DoS attacks. This requirement addresses concurrent sessions for administrative accounts and does not address concurrent sessions by a single administrator via multiple administrative accounts. The maximum number of concurrent sessions is defined by DoD as one based on operational environment for each system.

Check Content

1. Log in to the SMS client. 
2. Select >> "Edit" >> "Preferences".  Select "Security" under "Session Preferences".
3. Verify the setting for the "limit number of total and user sessions" option is checked.
4. Verify the active sessions allowed for a user option has a numeric value of 1.

If the TippingPoint SMS does limit the maximum number of concurrent active sessions to one for the account of last resort, this is a finding.

Fix Text

1. Log in to the SMS client. 
2. Select >> "Edit" >> "Preferences".  Select "Security" under "Session Preferences". Click the check box for "Limit number of total and user sessions". 
3. Type 1 for the number of active sessions allowed for a user. 
4. Click OK.