STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

AC-10

Access ControlRev 5system

Concurrent Session Control

Baselines:High

Control Statement

Limit the number of concurrent sessions for each [Assignment: account and/or account types] to [Assignment: number].

Supplemental Guidance

Organizations may define the maximum number of concurrent sessions for system accounts globally, by account type, by account, or any combination thereof. For example, organizations may limit the number of concurrent sessions for system administrators or other individuals working in particularly sensitive domains or mission-critical applications. Concurrent session control addresses concurrent sessions for system accounts. It does not, however, address concurrent sessions by single users via multiple system accounts.

Related Controls (1)

SC-23

CCI Identifiers (4)

CCI-000055Defines the maximum number of concurrent sessions to be allowed for each organization-defined account and/or account type.CCI-000054Limit the number of concurrent sessions for each organization-defined account and/or account type to an organization-defined number.CCI-002252Defines the accounts and/or account types for which will limit the number of concurrent sessions.CCI-002253The organization defines the account types for which the information system will limit the number of concurrent sessions.deprecated

Linked STIG Checks (200)

Across 148 STIGs. Click to expand.