5fbc456807
This patch applies the graphical session lock settings from the following STIG controls: - RHEL-07-010060 - RHEL-07-010070 - RHEL-07-010071 - RHEL-07-010073 - RHEL-07-010074 Docs will be provided in a follow-on patch. Implements: blueprint security-rhel7-stig Change-Id: I306ea5e2e274a2ca63158ba8b039686b27a5d923
25 lines
1.0 KiB
Django/Jinja
25 lines
1.0 KiB
Django/Jinja
{% if security_lock_session | bool %}
|
|
[org/gnome/desktop/session]
|
|
# RHEL-07-010070 - The operating system must initiate a screensaver after a
|
|
# 15-minute period of inactivity for graphical user
|
|
# interfaces.
|
|
idle-delay={{ security_lock_session_inactive_delay }}
|
|
|
|
[org/gnome/desktop/screensaver]
|
|
# RHEL-07-010060 - The operating system must enable a user session lock until
|
|
# that user re-establishes access using established
|
|
# identification and authentication procedures.
|
|
lock-enabled=true
|
|
|
|
# RHEL-07-010074 - The operating system must initiate a session lock for
|
|
# graphical user interfaces when the screensaver is activated.
|
|
lock-delay={{ security_lock_session_screensaver_lock_delay }}
|
|
|
|
{% if security_lock_session_when_inactive | bool %}
|
|
# RHEL-07-010073 - The operating system must initiate a session lock for the
|
|
# screensaver after a period of inactivity for graphical user
|
|
# interfaces.
|
|
idle-activation-enabled=true
|
|
{% endif %}
|
|
{% endif %}
|