Upon successful login, the network device must notify the user of the number of unsuccessful login attempts since the last successful login.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000049-NDM-000032	SRG-NET-000049-NDM-000032	SRG-NET-000049-NDM-000032_rule		Medium

Description
Providing users with information regarding the date and time of their last successful login allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators. Without this information, the user may not become aware that unauthorized activity has occurred. This incorporates all methods of login including, but not limited to, SSH, HTTP, HTTPS, and physical connectivity.

Description

Providing users with information regarding the date and time of their last successful login allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators. Without this information, the user may not become aware that unauthorized activity has occurred. This incorporates all methods of login including, but not limited to, SSH, HTTP, HTTPS, and physical connectivity.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000049-NDM-000032_chk )
Initiate a failed login attempt using the target user's account followed by a successful attempt for the same user account. If the number of unsuccessful login attempts since the last successful login is not displayed, this is a finding.

Fix Text (F-SRG-NET-000049-NDM-000032_fix)
Configure the network device to display the number of unsuccessful login attempts since the last successful login.