STIGQter STIGQter: STIG Summary: HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 28 Jul 2017:

The Standard Mandatory DoD Notice and Consent Banner must be displayed until users acknowledge the usage conditions and take explicit actions to log on for further access.

DISA Rule

SV-85133r1_rule

Vulnerability Number

V-70511

Group Title

SRG-OS-000023-GPOS-00006

Rule Version

HP3P-32-001600

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

To configure the SSH login banner, enter the command:

cli% setsshbanner

Enter the following text:

I've read & consent to terms in IS user agreem't

Then press enter twice to conclude setting the SSH banner text.

Check Contents

Verify that the SSH login banner is properly configured.

Enter the following command:

cli% showsshbanner
I've read & consent to terms in IS user agreem't

If the output is not:

"I've read & consent to terms in IS user agreem't"

this is a finding.

Alternatively:

To inspect the banner, login via SSH from a remote host.

If the output shown above is not displayed during SSH authentication, this is a finding.

Vulnerability Number

V-70511

Documentable

False

Rule Version

HP3P-32-001600

Severity Override Guidance

Verify that the SSH login banner is properly configured.

Enter the following command:

cli% showsshbanner
I've read & consent to terms in IS user agreem't

If the output is not:

"I've read & consent to terms in IS user agreem't"

this is a finding.

Alternatively:

To inspect the banner, login via SSH from a remote host.

If the output shown above is not displayed during SSH authentication, this is a finding.

Check Content Reference

M

Target Key

3013

Comments