Title

The container platform must display the Standard Mandatory DoD Notice and Consent Banner before granting access to platform components. (Cat III impact)

Discussion

The container platform has countless components where different access levels are needed. To control access, the user must first log in to the component and then be presented with a DoD-approved use notification banner before granting access to the component. This guarantees privacy and security notification verbiage used is consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.

Check Content

Review the container platform configuration to determine if the Standard Mandatory DoD Notice and Consent Banner is configured to be displayed before granting access to platform components. Log in to the container platform components and verify that the Standard Mandatory DoD Notice and Consent Banner is being displayed before granting access. If the Standard Mandatory DoD Notice and Consent Banner is not configured or is not displayed before granting access to container platform components, this is a finding.

Fix Text

Configure the container platform to display the Standard Mandatory DoD Notice and Consent Banner before granting access to container platform components.

Additional Identifiers

Rule ID: SV-233032r879547_rule

Vulnerability ID: V-233032

Group Title: SRG-APP-000068

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.