Merge pull request #588 from GSA/staging

Production Update 0928

_data/fips201pacs-await-list.yml

@@ -20,28 +20,28 @@
 #   state: [string]
 #   teststatus: [string] 
 
-- position: 1
-  solution: ReconaSense + HID Global Validation System
-  aplnumbers: 10131 & 10132
-  state: Update
+- position: 1	
+  solution: Software House C-CURE-9000 V2.9 PACS 13.02	
+  aplnumbers: New	
+  state: New	
   teststatus: In queue
 
 - position: 2
-  solution: Gallagher PIV Command Center with HID Global Validation System
+  solution: Gallagher PIV Command Center with HID Global Validation
   aplnumbers: 10019 & 10020
   state: Update
   teststatus: In queue
 
 - position: 3
   solution: Datawatch + HID pivCLASS
-  aplnumbers: 10117 & 10118
-  state: Update
+  aplnumbers: New
+  state: New
   teststatus: In queue
 
 - position: 4
-  solution: Software House C●CURE-9000 V2.9 PACS 13.02
-  aplnumbers: New
-  state: New
+  solution: Identiv Velocity Security Management System 13.02
+  aplnumbers: 10103
+  state: Update
   teststatus: In queue
 
 - position: 5
@@ -51,25 +51,25 @@
   teststatus: In queue
 
 - position: 6
-  solution: AMAG Symmetry Professional + Identity One Validation System
-  aplnumbers: 10143 & 10144
+  solution: Genetec Security Center – Synergis with HID Global Validation System
+  aplnumbers: 10061 & 10062
   state: Update
   teststatus: In queue
 
 - position: 7
-  solution: "Genetec Security Center – Synergis with HID Global Validation System"
-  aplnumbers: 10061 & 10062
+  solution: AMAG Symmetry Professional + Identity One Validation System
+  aplnumbers: 10143 & 10144
   state: Update
   teststatus: In queue
 
 - position: 8
-  solution: Identiv Velocity Security Management System 13.02
-  aplnumbers: 10103
-  state: Update
+  solution: NAPCO Security
+  aplnumbers: New
+  state: New
   teststatus: In queue
 
 - position: 9
-  solution: LenelS2 OnGuard with Embedded Authentication (TI Entry Point) + uTrust Reader addition
-  aplnumbers: 10126 & 10127
-  state: "New Reader add"
-  teststatus: In queue
+  solution: Tyco Security Products C-CURE 9000 with Innometrics validation System
+  aplnumbers: 10115 & 10108
+  state: Update
+  teststatus: On Hold by vendor

_implement/fpki_notifications.md

@@ -74,7 +74,7 @@ These announcements and hot topics concern Federal Public Key Infrastructure cha
 <script type="text/javascript" src="{{ site.baseurl }}/assets/js/gexfjs.js"></script>
 <script type="text/javascript" src="{{ site.baseurl }}/assets/js/config.js"></script>
 
-**Last Update**: September 18, 2023
+**Last Update**: September 25, 2023
 
 {% include graph.html %}
 

_implement/tools/crawler-lastrun.json

@@ -1,9 +1,7 @@
 {
     "anchor": "common_name:Federal Common Policy CA G2,organizational_unit_name:FPKI,organization_name:U.S. Government,country_name:US",
     "changes": {
-        "new_certs": [
-            "common_name:IdenTrust Global Common Root CA 1,organization_name:IdenTrust,country_name:US:85078591550210560575502040891770142861"
-        ]
+        "new_certs": []
     },
     "issuers": [
         "common_name:Advanced Health Systems Inc Direct CA 2,organizational_unit_name:IdenTrust Global Common,organization_name:IdenTrust,state_or_province_name:Mississippi,country_name:US",

_implement/tools/fpki-certs.gexf

@@ -1,8 +1,8 @@
 <?xml version="1.0" ?>
 <gexf xmlns="http://gexf.net/1.3" xmlns:viz="http://gexf.net/1.3/viz" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://gexf.net/1.3 http://gexf.net/1.3/gexf.xsd" version="1.3">
-    <meta lastmodifieddate="2023-09-18">
+    <meta lastmodifieddate="2023-09-25">
         <creator>py-crawler</creator>
-        <description>Created by Py-Crawler on 2023-09-18</description>
+        <description>Created by Py-Crawler on 2023-09-25</description>
     </meta>
     <graph defaultedgetype="directed" mode="static">
         <nodes>

_includes/highlights.html

@@ -1,79 +1,7 @@
 {% comment %}
 Use this section to highlight key elements of your site. Some sites will only have two while others may have six to
 eight.
-{% endcomment %}
-
-<!-- Start Freq Searched and RSS Feeds (removed for this sprint to seek other display options)-->
-<!-- <section class="ficam-page-container gsa-top-panel" style="padding-top: 25px;">
-	<div class="grid-container">
-		<div class="partners-container grid-row">
-			<div class="desktop:grid-col-12">
-				<ul class="usa-card-group">
-					<li class="usa-card tablet:grid-col-6">
-						<div class="usa-card__container gsa-card-shadow">
-							<div class="usa-card__header">
-								<h3 class="site-preview-heading">Most viewed</h3>				
-							</div>
-							<div class="usa-card__media">
-								<div class="usa-card__img">
-									  <img
-										src=""
-										alt="Most viewed"
-									  />
-								</div>
-							</div> 
-							<hr>
-							<div class="usa-card__body gsa-card-small">						
-								{% for link in site.data.mostviewed %}
-								<p>
-									<b><a class="usa-link" href="{{link.mvurl}}"  target="_blank">{{link.mvtext}}</a></b>
-									{% if forloop.last == false %}
-									<hr />
-									{% endif %}
-								</p>
-								{% endfor %}								
-							</div>
-							<hr>
-							<br>
-						</div>
-					</li>
-					<li class="usa-card tablet:grid-col-6">
-						<div class="usa-card__container gsa-card-shadow">
-							<div class="usa-card__header">
-								<h3 class="site-preview-heading">Cyber news</h3>
-								
-							</div>
-							<div class="usa-card__media">
-								<div class="usa-card__img">
-									  <img
-										src=""
-										alt="Cyber news"
-									  />
-								</div>
-							</div> 
-							<hr>
-							<div class="usa-card__body gsa-card-small">
-								source: https://www.cisa.gov/news.xml 
-								{% for feed in site.data.rssfeed %}
-								<b><a class="usa-link" href="{{feed.link}}"  target="_blank">{{feed.title}}</a></b>
-								<p class="usa-collection__description">
-									{{feed.description}}
-								</p>
-								{% if forloop.last == false %}
-								<hr />
-								{% endif %}
-								{% endfor %}
-							</div>
-							<hr>
-							<br>
-						</div>
-					</li>
-				</ul>	
-				</div>
-			</div>
-		</div>
-</section>		 -->
-<!-- Freq Searched and RSS Feed Cards -->		
+{% endcomment %}	
 
 <!-- Start of Vendors and Partner Cards -->	
 <section class="ficam-page-container bg-test" style="padding-top:25px;background-color: #f0f0f0;">
@@ -258,10 +186,10 @@ <h3 class="site-preview-heading">FIPS 201 evaluation program</h3>
 								<a href="{{site.baseurl}}/fips201ep/" aria-label="FIPS 201 evaluation program" class="usa-button usa-button--accent-cool usa-button--active">FIPS 201 evaluation program</a>
 							</p>
 							<p>
-								<a href="{{site.baseurl}}/fips201/" aria-label="Approved products list" class="usa-button usa-button--accent-cool usa-button--active">Approved product list</a>
+								<a href="{{site.baseurl}}/fips201/" aria-label="Approved product list" class="usa-button usa-button--accent-cool usa-button--active">Approved product list</a>
 							</p>
 							<p>
-								<a href="{{site.baseurl}}/fips201/#removed-product-list" aria-label="Removed products list" class="usa-button usa-button--accent-cool usa-button--active">Removed product list</a>
+								<a href="{{site.baseurl}}/fips201/#removed-product-list" aria-label="Removed product list" class="usa-button usa-button--accent-cool usa-button--active">Removed product list</a>
 							</p>
 						</div>
 						<hr>

_playbooks/playbook-whfb.md

@@ -172,7 +172,7 @@ Learn more about Azure AD registered devices [here](https://learn.microsoft.com/
 
 Azure AD join is intended for organizations that desire to be cloud-first or cloud-only. There's no restriction on the size or type of organizations that can deploy Azure AD join. Azure AD join also works in a hybrid environment and can enable access to on-premises applications and resources.
 
-Learn more about Azure AD joined devices [here](https://learn.microsoft.com/en-us/azure/active-directory/devices/concept-azure-ad-join){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="Learn more about Azure AD joined devices"}.
+Learn more about [Azure AD joined devices](https://learn.microsoft.com/en-us/azure/active-directory/devices/concept-azure-ad-join){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="Azure AD joined devices"}.
 
 **Hybrid Azure AD join**
 
@@ -185,7 +185,7 @@ Typically, organizations with an on-premises footprint rely on imaging methods t
 
 If your environment has an on-premises AD footprint and you want to benefit from the capabilities provided by Azure AD, you can implement hybrid Azure AD joined devices. These devices are joined to both your on-premises Active Directory and your Azure AD.
 
-Learn more about hybrid Azure AD joined devices [here](https://learn.microsoft.com/en-us/azure/active-directory/devices/concept-azure-ad-join-hybrid){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="Learn more about hybrid Azure AD joined devices"}.
+Learn more about [hybrid Azure AD joined devices](https://learn.microsoft.com/en-us/azure/active-directory/devices/concept-azure-ad-join-hybrid){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="hybrid Azure AD joined devices"}.
 
 **Mobile device management**
 
@@ -317,7 +317,7 @@ After enabling the policy, a series of policy choices must be made. Recommended
       <li>This setting applies to biometric facial recognition.</li>
       <li>What is anti-spoofing for facial recognition? An attacker with physical access to a Windows 10/11 device with WHfB set as the authentication method can use an Infrared (IR) photo of the user's face, save the frames to a custom USB device, and plug the USB into the computer. This tactic bypasses the built-in camera, and WHfB will search for frames on the external USB.</li>
       <li>Microsoft fixed this vulnerability in Update KB 5005478 (Windows Hello CVE-2021-34466).</li>
-      <li>Read more <a class="usa-link usa-link--external" href="https://www.cyberark.com/resources/threat-research-blog/bypassing-windows-hello-without-masks-or-plastic-surgery" aria-label="Read more on the CyberArk website.">here</a> on the CyberArk website.</li>
+      <li>Read more on <a class="usa-link usa-link--external" href="https://www.cyberark.com/resources/threat-research-blog/bypassing-windows-hello-without-masks-or-plastic-surgery" aria-label="the CyberArk website.">the CyberArk website.</a> </li>
     </ol>
   </li>
   <li>
@@ -745,7 +745,7 @@ Download and install the app:
 
 ## Windows infrared camera biometric set-up
 
-Facial recognition can be set up during Windows Hello enrollment or after by visiting **Settings \> Accounts \> Sign-in options \> Facial recognition**. To learn more about Windows Hello facial recognition and how the infrared camera prevents spoofing click [here](https://learn.microsoft.com/en-us/windows-hardware/design/device-experiences/windows-hello-face-authentication#benefits-of-near-infrared){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="learn more about Windows Hello facial recognition and how the infrared camera prevents spoofing"}.
+Facial recognition can be set up during Windows Hello enrollment or after by visiting **Settings \> Accounts \> Sign-in options \> Facial recognition**. To learn more about [Windows Hello facial recognition and how the infrared camera prevents spoofing](https://learn.microsoft.com/en-us/windows-hardware/design/device-experiences/windows-hello-face-authentication#benefits-of-near-infrared){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="Windows Hello facial recognition and how the infrared camera prevents spoofing"}.
 
 Choose **Get started** to begin the facial recognition process (see Figure 47).
 
@@ -825,7 +825,7 @@ The maximum number of supported enrollments on a single device is 10. This lets
 
 **Can I use third-party MFA providers with Windows Hello for Business?**
 
-Yes, if you're using federated hybrid deployment, you can use any third-party that provides an AD FS MFA adapter. A list of third-party MFA adapters can be found [here](https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-additional-authentication-methods-for-ad-fs#microsoft-and-third-party-additional-authentication-methods){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="A list of third-party MFA adapters"}.
+Yes, if you're using federated hybrid deployment, you can use any third-party that provides an AD FS MFA adapter. Here is a [list of third-party MFA adapters](https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-additional-authentication-methods-for-ad-fs#microsoft-and-third-party-additional-authentication-methods){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}{:aria-label="list of third-party MFA adapters"}.
 
 **Is Windows Hello for Business considered multi-factor authentication?**