STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Citrix Virtual Apps and Desktop 7.x License Server Security Technical Implementation Guide

V-234225

CAT II (Medium)

Citrix License Server must prohibit the use of cached authenticators after an organization-defined time period.

Rule ID

SV-234225r961521_rule

STIG

Citrix Virtual Apps and Desktop 7.x License Server Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-002007

Discussion

If cached authentication information is out of date, the validity of the authentication information may be questionable.

Check Content

1. Click "Administration" and select the "Server Configuration" tab.

2. Click the "Web Server Configuration" bar and "Session Timeout".

3. Verify Session Timeout is set to “10”. 

If Session Timeout is not set to “10”, this is a finding.

Fix Text

1. Click "Administration" and select the "Server Configuration" tab.

2. Click the Web Server Configuration bar.

3. For Session Timeout, enter the value of “10” (minutes).