Symantec ProxySG providing user access control intermediary services must display the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-94235 | SYMP-AG-000100 | SV-104189r2_rule | Medium |
| Description |
| STIG | Date |
| Symantec ProxySG ALG Security Technical Implementation Guide | 2020-03-27 |
Details
| Check Text (C-93421r2_chk) |
| Verify that the Standard Mandatory DoD Banner is configured. 1. Log on to the Web Management Console. 2. Click Configuration >> Visual Policy Manager. 3. Click "Launch". While in the Visual Policy Manager, ensure that the first Web Access Layer (furthest left) contains a single rule with a "Notify User" Action that contains the DoD banner text. 4. Right-click the "Notify User" action, select "Edit", and verify that the correct banner is specified in the "Body" field. 5. Verify the banner contains the exact DoD text. If Symantec ProxySG providing user access control intermediary services does not display the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network, this is a finding. |
| Fix Text (F-100351r2_fix) |
| Configure the Standard Mandatory DoD Banner to be displayed. 1. Log on to the Web Management Console. 2. Click Configuration >> Visual Policy Manager. 3. Click "Launch". While in the Visual Policy Manager, create a new Web Access Layer, positioned in front (farthest left) of all other existing Web Access Layers and perform the following: i. Click "edit" and select "add rule". ii. Right-click the "Actions" field of the new rule and select "set". Click "New" and select "NotifyUser" from the list and click "OK". iii. Input the correct banner text in the "Body" field and click "OK". iv. Click File >> Install Policy on SG Appliance. |