STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Mirantis Kubernetes Engine Security Technical Implementation Guide

V-260903

CAT II (Medium)

The Lifetime Minutes and Renewal Threshold Minutes Login Session Controls on MKE must be set.

Rule ID

SV-260903r986160_rule

STIG

Mirantis Kubernetes Engine Security Technical Implementation Guide

Version

V2R1

CCIs

CCI-001133CCI-004895CCI-002007

Discussion

The "Lifetime Minutes" and "Renewal Threshold Minutes" login session controls in MKE are part of security features that help manage user sessions within the MKE environment. Setting these controls is essential. MKE must terminate all network connections associated with a communications session at the end of the session, or as follows: For in-band management sessions (privileged sessions), the session must be terminated after 10 minutes of inactivity.

Check Content

Log in to the MKE web UI and navigate to admin >> Admin Settings >> Authentication & Authorization.

Ensure that "Lifetime Minutes" is set to "10" and "Renewal Threshold Minutes" is set to "0".

If these settings are not configured as specified, this is a finding.

Fix Text

Log in to the MKE web UI and navigate to admin >> Admin Settings >> Authentication & Authorization.

- Below Lifetime Minutes, enter "10".
- Below Renewal Threshold, enter "0".
- Click "Save".