STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Citrix XenDesktop 7.x License Server Security Technical Implementation Guide

V-213203

CAT II (Medium)

XenDesktop License Server must prohibit the use of cached authenticators after an organization-defined time period.

Rule ID

SV-213203r961521_rule

STIG

Citrix XenDesktop 7.x License Server Security Technical Implementation Guide

Version

V1R3

CCIs

CCI-002007

Discussion

If cached authentication information is out of date, the validity of the authentication information may be questionable.

Check Content

1. Click "Administration" and select the "Server Configuration" tab.
2. Click the "Web Server Configuration" bar and "Session Timeout".
3. Verify Session Timeout is set to “10”. 

If Session Timeout is not set to “10”, this is a finding.

Fix Text

1. Click "Administration" and select the "Server Configuration" tab.
2. Click the Web Server Configuration bar.
3. For Session Timeout, enter the value of “10” (minutes).