The IDPS must display an approved system use notification message (or banner) before granting access to the system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000041-IDPS-000061 | SRG-NET-000041-IDPS-000061 | SRG-NET-000041-IDPS-000061_rule | Low |
| Description |
|---|
| All network devices must present a DoD approved warning banner prior to a system administrator logging on. The banner should warn any unauthorized user not to proceed. It also should provide clear and unequivocal notice to both authorized and unauthorized personnel that access to the device is subject to monitoring to detect unauthorized usage. Failure to display the required login warning banner prior to logon attempts will limit the ability to prosecute unauthorized access and also presents the potential to give rise to criminal and civil liability for systems administrators and information systems managers. In addition, DISA's ability to monitor the device's usage is limited unless a proper warning banner is displayed. |
| STIG | Date |
|---|---|
| IDPS Security Requirements Guide (SRG) | 2012-03-08 |
Details
| Check Text ( C-43189_chk ) |
|---|
| Verify that an approved system use notification appears upon attempted login to the SSH or GUI interface to the sensors or management console. If a warning banner is not displayed prior to allowing user access to IDPS management console and sensors, this is a finding. |
| Fix Text (F-43189_fix) |
|---|
| Configure the IDPS management console GUI and SSH to display the authorized DoD warning banner text on or before the login page. |