STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG providing user access control intermediary services must display the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network.

DISA Rule

SV-68635r1_rule

Vulnerability Number

V-54389

Group Title

SRG-NET-000041-ALG-000022

Rule Version

SRG-NET-000041-ALG-000022

Severity

CAT II

CCI(s)

• CCI-000048 - The information system displays an organization-defined system use notification message or banner before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance.

Weight

10

Fix Recommendation

If user access control intermediary services are provided, configure the ALG to display the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network.

Check Contents

If the ALG does not provide user access control intermediary services, this is not applicable.

Verify the ALG displays the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network.

If the ALG does not display the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network, this is a finding.

Vulnerability Number

V-54389

Documentable

False

Rule Version

SRG-NET-000041-ALG-000022

Severity Override Guidance

If the ALG does not provide user access control intermediary services, this is not applicable.

Verify the ALG displays the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network.

If the ALG does not display the Standard Mandatory DoD-approved Notice and Consent Banner before granting access to the network, this is a finding.

Check Content Reference

M

Target Key

2489

Comments