Open Abester45 opened 2 years ago
We had the same issue at the U.S. EPA. The DISA STIGS are preventing ANDI from starting. ANDI starts by running a JavaScript Statement/Command. The DISA STIGS are not allowing the JavaScript to run since it is calling an outside server (SSA). The EPA has an exception group for ANDI users that allows for the JavaScript call to the SSA server. ANDI runs properly for all Users in this group. Note: The STIG only appears to be affecting Chrome Users. ANDI continues to run correctly for users of IE 11 or MS Edge.
Sent from the all new AOL app for iOS
On Monday, October 25, 2021, 2:39 PM, Abester45 @.***> wrote:
We applied DoD DISA STIGs hardening settings for Chrome v2r4 in our environment and ANDI no longer works/respinding. When clicking on ANDI i get no response, no pop-up errors/prompts or warning messages. ANDI is required by our 508 testers, what is the workaround to alloe ANDI to work with Chrome STIGs applied?
— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or unsubscribe. Triage notifications on the go with GitHub Mobile for iOS or Android.
We had the same issue at the U.S. EPA. The DISA STIGS are preventing ANDI from starting. ANDI starts by running a JavaScript Statement/Command. The DISA STIGS are not allowing the JavaScript to run since it is calling an outside server (SSA). The EPA has an exception group for ANDI users that allows for the JavaScript call to the SSA server. ANDI runs properly for all Users in this group. Note: The STIG only appears to be affecting Chrome Users. ANDI continues to run correctly for users of IE 11 or MS Edge. Sent from the all new AOL app for iOS On Monday, October 25, 2021, 2:39 PM, Abester45 @.***> wrote: We applied DoD DISA STIGs hardening settings for Chrome v2r4 in our environment and ANDI no longer works/respinding. When clicking on ANDI i get no response, no pop-up errors/prompts or warning messages. ANDI is required by our 508 testers, what is the workaround to alloe ANDI to work with Chrome STIGs applied? — You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or unsubscribe. Triage notifications on the go with GitHub Mobile for iOS or Android.
Hi Jbelzjr,
Can you please share the GPO exception setting put in place to allow ANDI to run, would be greatly appreciated.
@SSAgovAdmin are you aware of any exception settings needed for ANDI to run properly with DISA STIGs applied in Chrome browser? Are there Java application dependencies that need to be allowed in group policy or a SSA server call out setting that needs to be added in firewall?
Any updates?
I am also interested in this information.
If you still have access to the Developer Tools in the browser, the following procedure may provide a temporary work-around to be able to launch ANDI:
We applied DoD DISA STIGs hardening settings for Chrome v2r4 in our environment and ANDI no longer seems to works. When clicking on ANDI there is no response, no pop-up errors/prompts or warning messages displayed. ANDI is required by our 508 testers, what is the workaround to allow ANDI to work with Chrome STIGs applied? I fear other goverment agencies employing STIG browser hardening for Chrome is facing similar issues with ANDI.