PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Remote Desktop Services: Must be configured to set a time limit for disconnected sessions

d47a831c-3a18-43bd-996d-12c3002cd98e

This setting controls how long a session will remain connected if it is unexpectedly terminated. Such sessions use system resources and pose a security risk. Disconnected sessions should be terminated after a certain time.

Remediation

To configure the policy value for
Computer Configuration
|_ Administrative Templates
|_ Windows Components
|_ Remote Desktop Services
|_ Remote Desktop Session Host
|_ Session Time Limits
|_ Set time limit for disconnected sessions To "Enabled", and "End a disconnected session" to "1 minute".

Remote desktop services disconnected sessions time out should be enabled and set to 1 Minute.

NIST 800-171: SC10,SC23
NIST 800-53: AC-12
MITRE Att&ck: T1021.001, T1563.002 Mitigations: M1028



Tags

stig-medium-server server security-server compliance-server remote-desktop

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.