SV-228617r505850_rule
V-228617
PP-MDF-301200
GOOG-11-003400
CAT III
10
Configure the DoD warning banner by either of the following methods (required text is found in the Vulnerability Discussion):
1. By placing the DoD warning banner text in the user agreement signed by each Google Android 11 device user (preferred method).
2. By configuring the warning banner text on the EMM console and installing the banner on each managed mobile device.
On the EMM Console:
1. Open "Lock screen restrictions".
2. Select "Personal Profile".
3. Select "Lock screen message".
4. Enter in message.
The DoD warning banner can be displayed by either of the following methods (required text is found in the Vulnerability Discussion):
1. By placing the DoD warning banner text in the user agreement signed by each Google Android device user (preferred method).
2. By configuring the warning banner text on the EMM console and installing the banner on each managed mobile device.
Determine which method is used at the Google Android device site and follow the appropriate validation procedure below.
Validation Procedure for Method #1:
Review the signed user agreements for several Google Android device users and verify the agreement includes the required DoD warning banner text.
Validation Procedure for Method #2:
On the EMM Console:
1. Open "Lock screen restrictions".
2. Select "Personal Profile".
3. Select "Lock screen message".
4. Verify message.
If, for Method #1, the required warning banner text is not on all signed user agreements reviewed, or for Method #2, the EMM console device policy is not set to display a warning banner with the appropriate designated wording or on the Android 11 device, the device policy is not set to display a warning banner with the appropriate designated wording, this is a finding.
V-228617
False
GOOG-11-003400
The DoD warning banner can be displayed by either of the following methods (required text is found in the Vulnerability Discussion):
1. By placing the DoD warning banner text in the user agreement signed by each Google Android device user (preferred method).
2. By configuring the warning banner text on the EMM console and installing the banner on each managed mobile device.
Determine which method is used at the Google Android device site and follow the appropriate validation procedure below.
Validation Procedure for Method #1:
Review the signed user agreements for several Google Android device users and verify the agreement includes the required DoD warning banner text.
Validation Procedure for Method #2:
On the EMM Console:
1. Open "Lock screen restrictions".
2. Select "Personal Profile".
3. Select "Lock screen message".
4. Verify message.
If, for Method #1, the required warning banner text is not on all signed user agreements reviewed, or for Method #2, the EMM console device policy is not set to display a warning banner with the appropriate designated wording or on the Android 11 device, the device policy is not set to display a warning banner with the appropriate designated wording, this is a finding.
M
4229