STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Network WLAN Controller Platform Security Technical Implementation Guide

V-243233

CAT II (Medium)

The WLAN inactive/idle session timeout must be set for 30 minutes or less.

Rule ID

SV-243233r817090_rule

STIG

Network WLAN Controller Platform Security Technical Implementation Guide

Version

V7R3

CCIs

CCI-000057

Discussion

A WLAN session that never terminates due to inactivity may allow an opening for an adversary to highjack the session to obtain access to the network.

Check Content

1. Review the relevant configuration screen of the WLAN controller or access point.
2. Verify the inactive/idle session timeout setting is set for 30 minutes or less. 

If the inactive/idle session timeout is not set to 30 minutes or less for the entire WLAN, or the WLAN does not have the capability to enable the session timeout feature, this is a finding.

Fix Text

Set the WLAN inactive/idle session timeout to 30 minutes or less.