The publicly accessible application must display the Standard Mandatory DoD Notice and Consent Banner before granting access to the application.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-222436	APSC-DV-000570	SV-222436r960849_rule		Low

Description

STIG	Date
Application Security and Development Security Technical Implementation Guide	2025-02-12

Details

Check Text (C-24106r493216_chk)

This requirement only applies to publicly accessible applications. If the application is not publicly accessible, this requirement is not applicable.

Access the application and observe the screen to ensure the DoD-approved banner is displayed prior to obtaining full access to the application. Refer to the vulnerability discussion for the approved banner text.

If the standard DoD-approved banner is not displayed prior to obtaining access, this is a finding.

Fix Text (F-24095r493217_fix)

Configure the application to present the standard DoD-approved banner prior to granting access to the application.