1.7.1 Configure an MOTD (Message of the day) Banner

Information

An MOTD banner is displayed when a terminal connects, before a login occurs. This banner is useful for sending messages that affect all users (such as impending system shutdowns). This banner can also be used to notify unauthorized users of any penalties to accessing the device, or any logging that may be configured

Rationale:

Network banners are electronic messages that provide notice of legal rights to users of computer networks. From a legal standpoint, banners have four primary functions.

Banners may be used to generate consent to real-time monitoring under Title III

Banners may be used to generate consent to the retrieval of stored files and records pursuant to ECPA.

in the case of government networks, banners may eliminate any Fourth Amendment 'reasonable expectation of privacy' that government employees or other users might otherwise retain in their use of the government's network under O'Connor v. Ortega, 480 U.S. 709 (1987).

In the case of a non-government network, banners may establish a system administrator's 'common authority' to consent to a law enforcement search pursuant to United States v. Matlock, 415 U.S. 164 (1974).' (US Department of Justice APPENDIX A: Sample Network Banner Language)

Solution

Configure an MOTD banner as shown below. The delimiter character shown is a '^', but it can be any character can serve as a delimiter.

switch(config)# banner motd ^
> Enter MOTD Banner here.
> End this message with the same delimeter as above
> ^
switch(config)#

Default Value:

By default no MOTD banner is configured.

See Also

https://workbench.cisecurity.org/files/3102

Item Details

Category: AWARENESS AND TRAINING

References: 800-53|AT-2, CSCv7|17

Plugin: Cisco

Control ID: f0db5671428ec48beed03672942afa6ecf9bf3571cb6abd9a8e92367c3173506