STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Application Server Security Requirements Guide

V-204804

CAT II (Medium)

The application server must prohibit the use of cached authenticators after an organization-defined time period.

Rule ID

SV-204804r961521_rule

STIG

Application Server Security Requirements Guide

Version

V4R4

CCIs

CCI-002007

Discussion

When the application server is using PKI authentication, a local revocation cache must be stored for instances when the revocation cannot be authenticated through the network, but if cached authentication information is out of date, the validity of the authentication information may be questionable.

Check Content

Review application server documentation to ensure the application server prohibits the use of cached authenticators after an organization-defined timeframe.

If the application server is not configured to meet this requirement, this is a finding.

Fix Text

Configure the application server to prohibit the use of cached authenticators after an organization-defined timeframe.