The organization must maintain a SIPRNet connection approval package with the Classified Connection Approval Office when connecting a Secure WLAN to SIPRNet.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-MPOL-015	SRG-MPOL-015	SRG-MPOL-015_rule		High

Description
The CCAO approval process provides assurance that the SWLAN use is appropriate and does not introduce unmitigated risks into the SIPRNet.

STIG	Date
Mobile Policy Security Requirements Guide	2012-10-10

Details

Check Text ( C-SRG-MPOL-015_chk )
Verify the SWLAN system CCAO approval documentation exists and has been approved and has a SIPRNet or NIPRNet Interim Approval to Operate (IATO) or Approval to Operate (ATO) in the GIAP database. Verify the SWLAN system is included in the accreditation documentation and is signed by the DAA. If the SIPRNet connection approval package is not on file with the Classified Connection Approval Office (CCAO), this is a finding.

Check Text ( C-SRG-MPOL-015_chk )

Verify the SWLAN system CCAO approval documentation exists and has been approved and has a SIPRNet or NIPRNet Interim Approval to Operate (IATO) or Approval to Operate (ATO) in the GIAP database. Verify the SWLAN system is included in the accreditation documentation and is signed by the DAA. If the SIPRNet connection approval package is not on file with the Classified Connection Approval Office (CCAO), this is a finding.

Fix Text (F-SRG-MPOL-015_fix)
Disable or remove the non-compliant SWLAN until the site has all required approvals for operation.