| ALMA-09-002000 | V1R4 | AlmaLinux OS 9 must be able to directly initiate a session lock for all connection types using smart card when the smart card is removed. | AlmaLinux OS 9 |
| ALMA-09-002110 | V1R4 | AlmaLinux OS 9 must prevent a user from overriding the disabling of the graphical user smart card removal action. | AlmaLinux OS 9 |
| APPL-13-000001 | V1R5 | The macOS system must be configured to prevent Apple Watch from terminating a session lock. | macOS 13 - Ventura |
| APPL-13-000002 | V1R5 | The macOS system must retain the session lock until the user reestablishes access using established identification and authentication procedures. | macOS 13 - Ventura |
| APPL-13-000003 | V1R5 | The macOS system must initiate the session lock no more than five seconds after a screen saver is started. | macOS 13 - Ventura |
| APPL-14-000001 | V2R4 | The macOS system must prevent Apple Watch from terminating a session lock. | macOS 14 - Sonoma |
| APPL-14-000002 | V2R4 | The macOS system must enforce screen saver password. | macOS 14 - Sonoma |
| APPL-14-000003 | V2R4 | The macOS system must enforce session lock no more than five seconds after screen saver is started. | macOS 14 - Sonoma |
| APPL-14-002090 | V2R4 | The macOS system must disable TouchID for unlocking the device. | macOS 14 - Sonoma |
| APPL-15-000001 | V1R5 | The macOS system must prevent Apple Watch from terminating a session lock. | macOS 15 - Sequoia |
| APPL-15-000002 | V1R5 | The macOS system must enforce screen saver password. | macOS 15 - Sequoia |
| APPL-15-000003 | V1R5 | The macOS system must enforce session lock no more than five seconds after screen saver is started. | macOS 15 - Sequoia |
| APPL-15-002090 | V1R5 | The macOS system must disable TouchID for unlocking the device. | macOS 15 - Sequoia |
| OL07-00-010060 | V3R3 | The Oracle Linux operating system must enable a user session lock until that user re-establishes access using established identification and authentication procedures. | Oracle Linux 7 |
| OL08-00-020030 | V2R6 | OL 8 must enable a user session lock until that user reestablishes access using established identification and authentication procedures for graphical user sessions. | Oracle Linux 8 |
| OL08-00-020043 | V2R6 | OL 8 must enable a user session lock until that user reestablishes access using established identification and authentication procedures for command line sessions. | Oracle Linux 8 |
| OL08-00-020050 | V2R6 | OL 8 must be able to initiate directly a session lock for all connection types using smartcard when the smartcard is removed. | Oracle Linux 8 |
| OL09-00-002123 | V1R3 | OL 9 must prevent a user from overriding the screensaver lock-enabled setting for the graphical user interface. | Oracle Linux 9 |
| OL09-00-002126 | V1R3 | OL 9 must prevent a user from overriding the disabling of the graphical user smart card removal action. | Oracle Linux 9 |
| OL09-00-002160 | V1R3 | OL 9 must be able to directly initiate a session lock for all connection types using smart card when the smart card is removed. | Oracle Linux 9 |
| RHEL-07-010060 | V3R9 | The Red Hat Enterprise Linux operating system must enable a user session lock until that user re-establishes access using established identification and authentication procedures. | Red Hat Enterprise Linux 7 |
| RHEL-08-020030 | V2R5 | RHEL 8 must enable a user session lock until that user re-establishes access using established identification and authentication procedures for graphical user sessions. | Red Hat Enterprise Linux 8 |
| RHEL-08-020050 | V2R5 | RHEL 8 must be able to initiate directly a session lock for all connection types using smartcard when the smartcard is removed. | Red Hat Enterprise Linux 8 |
| RHEL-09-271045 | V2R6 | RHEL 9 must be able to initiate directly a session lock for all connection types using smart card when the smart card is removed. | Red Hat Enterprise Linux 9 |
| RHEL-09-271050 | V2R6 | RHEL 9 must prevent a user from overriding the disabling of the graphical user smart card removal action. | Red Hat Enterprise Linux 9 |
| RHEL-09-271055 | V2R6 | RHEL 9 must enable a user session lock until that user re-establishes access using established identification and authentication procedures for graphical user sessions. | Red Hat Enterprise Linux 9 |
| RHEL-09-271060 | V2R6 | RHEL 9 must prevent a user from overriding the screensaver lock-enabled setting for the graphical user interface. | Red Hat Enterprise Linux 9 |
| SLES-12-010060 | V3R2 | The SUSE operating system must be able to lock the graphical user interface (GUI). | SUSE Linux Enterprise 12 |
| SLES-12-010070 | V3R2 | The SUSE operating system must utilize vlock to allow for session locking. | SUSE Linux Enterprise 12 |
| SLES-15-010100 | V2R4 | The SUSE operating system must be able to lock the graphical user interface (GUI). | SUSE Linux Enterprise 15 |
| SLES-15-010110 | V2R4 | The SUSE operating system must utilize vlock to allow for session locking. | SUSE Linux Enterprise 15 |
| TOSS-04-020020 | V2R3 | TOSS must retain a user's session lock until that user reestablishes access using established identification and authentication procedures. | Tri-Lab Operating System Stack |
| UBTU-18-010401 | V2R15 | The Ubuntu operating system must retain a users session lock until that user reestablishes access using established identification and authentication procedures. | Ubuntu 18.04 |
| UBTU-20-010004 | V2R3 | The Ubuntu operating system must retain a user's session lock until that user reestablishes access using established identification and authentication procedures. | Ubuntu 20.04 |
| UBTU-22-271020 | V2R6 | Ubuntu 22.04 LTS must retain a user's session lock until that user reestablishes access using established identification and authentication procedures. | Ubuntu 22.04 |
| UBTU-24-200040 | V1R1 | Ubuntu 24.04 LTS must retain a user's session lock until the user reestablishes access using established identification and authentication procedures. | Ubuntu 24.04 |
| WN10-CC-000365 | V3R4 | Windows 10 must be configured to prevent Windows apps from being activated by voice while the system is locked. | Microsoft Windows 10 |
| WN11-CC-000365 | V2R5 | Windows 11 must be configured to prevent Windows apps from being activated by voice while the system is locked. | Microsoft Windows 11 |
| WN19-SO-000120 | V3R6 | Windows Server 2019 machine inactivity limit must be set to 15 minutes or less, locking the system with the screen saver. | Microsoft Windows Server 2019 |
| WN22-SO-000120 | V2R6 | Windows Server 2022 machine inactivity limit must be set to 15 minutes or less, locking the system with the screen saver. | Microsoft Windows Server 2022 |