Sentry must display the Standard Mandatory DOD Notice and Consent Banner in the Sentry web interface before granting access to the device.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-250987 | MOIS-ND-000150 | SV-250987r1028214_rule | Medium |
| Description |
| Display of the DOD-approved use notification before granting access to the network device ensures privacy and security notification verbiage used is consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. System use notifications are required only for access via logon interfaces with human users. |
| STIG | Date |
| Ivanti Sentry 9.x NDM Security Technical Implementation Guide | 2024-09-25 |
Details
| Check Text (C-54422r1004836_chk) |
| Verify that Sentry displays "I've read and consent to terms in IS user agreem't" when logging in to the command line. 1. Log in to the Sentry System Manager or the CLI interface. 2. Verify the required login banner is displayed. If the banner is not shown, this is a finding. |
| Fix Text (F-54376r1004837_fix) |
| Configure Sentry to display "I've read and consent to terms in IS user agreem't" when logging in to the command line. 1. Log in to the Sentry System Manager. 2. Go to Settings >> Login. 3. Add the required login banner to the "Text to Display" box. 4. Click "Apply". |