Overview:
The organization requires that users log out when [Assignment: organization-defined time-period of expected inactivity or description of when to log out]
Related control: SC-23
Action Items:
1) Enable logouts due to a specific period of inactivity
Related Documents:
1) Access Control Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters/
none
Moderate Additional FedRAMP Requirements and Guidance
AC-2 (5) Guidance: Should use a shorter timeframe than AC-12.
Article ID: 15
Created: September 25, 2022
Last Updated: September 26, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/fedramp-inactivity-logout-ac-2-5-15.html