STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Solaris 11 SPARC Security Technical Implementation Guide

V-216399

CAT II (Medium)

The operating system must terminate all sessions and network connections when nonlocal maintenance is completed.

Rule ID

SV-216399r986416_rule

STIG

Solaris 11 SPARC Security Technical Implementation Guide

Version

V3R5

CCIs

CCI-001133

Discussion

Nonlocal maintenance and diagnostic activities are those activities conducted by individuals communicating through a network, either an external network (e.g., the internet) or an internal network. The operating system needs to ensure all sessions and network connections are terminated when nonlocal maintenance is completed.

Check Content

Determine if SSH is configured to disconnect sessions after 10 minutes of inactivity.

# grep ClientAlive /etc/ssh/sshd_config

If the output of this command is not the following, this is a finding.

ClientAliveInterval 600
ClientAliveCountMax 0

Fix Text

The root role is required.

Configure the system to disconnect SSH sessions after 10 minutes of inactivity.

# pfedit /etc/ssh/sshd_config

Insert the two lines:

ClientAliveInterval 600
ClientAliveCountMax 0

Restart the SSH service with the new configuration.

# svcadm restart svc:/network/ssh