← Back to Unified Endpoint Management Server Security Requirements Guide

V-234312

CAT III (Low)

The UEM server must retain the access banner until the user acknowledges acceptance of the access conditions.

Rule ID

SV-234312r960846_rule

STIG

Unified Endpoint Management Server Security Requirements Guide

Version

V2R4

CCIs

CCI-000050

Discussion

The banner must be acknowledged by the user prior to allowing the user access to the application. This provides assurance that the user has seen the message and accepted the conditions for access. If the consent banner is not acknowledged by the user, DoD will not be in compliance with system use notifications required by law. To establish acceptance of the application usage policy, a click-through banner at application logon is required. The application must prevent further activity until the user executes a positive action to manifest agreement by clicking on a box indicating "OK". Satisfies:FTA_TAB.1.1 Reference:PP-MDM-413003

Check Content

Verify the UEM server retains the access banner until the user acknowledges acceptance of the access conditions.

If the UEM server does not retain the access banner until the user acknowledges acceptance of the access conditions, this is a finding.

Fix Text

Configure the UEM server to retain the access banner until the user acknowledges acceptance of the access conditions.