1.3.2 Set the 'banner-text' for 'banner login'

Information

Follow the banner login command with one or more blank spaces and a delimiting character of your choice. Then enter one or more lines of text, terminating the message with the second occurrence of the delimiting character.

When a user connects to the router, the message-of-the-day (MOTD) banner (if configured) appears first, followed by the login banner and prompts. After the user successfully logs in to the router, the EXEC banner or incoming banner will be displayed, depending on the type of connection. For a reverse Telnet login, the incoming banner will be displayed. For all other connections, the router will display the EXEC banner.

Rationale:

'Network banners are electronic messages that provide notice of legal rights to users of computer networks. From a legal standpoint, banners have four primary functions.

First, banners may be used to generate consent to real-time monitoring under Title III.

Second, banners may be used to generate consent to the retrieval of stored files and records pursuant to ECPA.

Third, in the case of government networks, banners may eliminate any Fourth Amendment 'reasonable expectation of privacy' that government employees or other users might otherwise retain in their use of the government's network under O'Connor v. Ortega, 480 U.S. 709 (1987).

Fourth, in the case of a non-government network, banners may establish a system administrator's 'common authority' to consent to a law enforcement search pursuant to United States v. Matlock, 415 U.S. 164 (1974).' (US Department of Justice APPENDIX A: Sample Network Banner Language)

Impact:

Organizations provide appropriate legal notice(s) and warning(s) to persons accessing their networks by using a 'banner-text' for the banner login command.

Solution

Configure the device so a login banner presented to a user attempting to access the device.

hostname(config)#banner login c
Enter TEXT message. End with the character 'c'.
<banner-text>
c

Default Value:

No banner is set by default

See Also

https://workbench.cisecurity.org/files/3829

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-2, CSCv7|17

Plugin: Cisco

Control ID: ea4c2ccf85c3fec051ed8c45efdf91da37b78b07ba19aa0b24e0598e59942c98