Puppet Class: secure_windows::stig::v73387

Defined in:
manifests/stig/v73387.pp

Overview

This class manages V-73387 The directory service must be configured to terminate LDAP-based network connections to the directory server after 5 minutes of inactivity.

Parameters:

  • enforced (Boolean) (defaults to: false) 


4
5
6
7
8
9
10
11
12
13
14
15
16
17
 
# File 'manifests/stig/v73387.pp', line 4

class secure_windows::stig::v73387 (
  Boolean $enforced = false,
) {
  if $enforced {
    if($facts['windows_server_type'] == 'windowsdc') {
      $num = 0 + $facts['maxconnidletime']
      if $num > 300 {
        exec { 'V-73387: Set NTDSUtil MaxConnIdleTime':
          command => "C:\\Windows\\System32\\ntdsutil.exe \"LDAP policies\" \"connections\" \"connect to server ${facts['fqdn']}\" \"q\" \"Set MaxConnIdleTime to 300\" \"Commit Changes\" \"q\" \"q\"", # lint:ignore:140chars
        }
      }
    }
  }
}