Samsung Android must be configured to display the DOD advisory warning message at startup or each time the user unlocks the device.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-255138 | KNOX-13-210020 | SV-255138r958390_rule | Low |
| Description |
| STIG | Date |
| Samsung Android OS 13 with Knox 3.x COPE Security Technical Implementation Guide | 2024-12-06 |
Details
| Check Text (C-58751r867349_chk) |
| Confirm if Method #1 or #2 is used at the Samsung device site and follow the appropriate procedure. This validation procedure is performed on both the management tool and the Samsung Android device. Validation procedure for method #1: Place the DOD warning banner in the user agreement signed by each Samsung Android device user (preferred method). Review the signed user agreements for several Samsung Android device users and verify that the agreement includes the required DOD warning banner text. Validation procedure for method #2: Configure the warning banner text in the Lock screen message on each managed mobile device. On the management tool, in the device restrictions section, verify that "Lock Screen Message" is set to the DOD-mandated warning banner text. On the Samsung Android device, verify that the required DOD warning banner text is displayed on the Lock screen. If the warning text has not been placed in the signed user agreement, or if on the management tool "Lock Screen Message" is not set to the DOD-mandated warning banner text, or on the Samsung Android device the required DOD warning banner text is not displayed on the Lock screen, this is a finding. |
| Fix Text (F-58695r867350_fix) |
| Configure the DOD warning banner by either of the following methods (required text is found in the Vulnerability Description): Method #1: Place the DOD warning banner in the user agreement signed by each Samsung Android device user (preferred method). Method #2: Configure the warning banner text in the Lock screen message on each managed mobile device. On the management tool, in the device restrictions section, set "Lock Screen Message" to the DOD-mandated warning banner text. |