STIGQter: STIG Summary: Infoblox 7.x DNS Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: Infoblox 7.x DNS Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:SV-214163r612370_rule
V-214163
SRG-APP-000142-DNS-000014
IDNS-7X-000130
CAT II
10
Navigate to Grid >> Grid Manager >> Services tab.
Select each available service at the top of the panel and review the Service Status.
Click on the member and disable unnecessary services.
Note: For Infoblox DNS systems on a Classified network, this requirement is Not Applicable.
By default all services other than those required for management are disabled. Validate that no additional services have been enabled for DNS members.
Navigate to Grid >> Grid Manager >> Services tab and review each service and member status at the top of the panel.
Depending upon purchased options, Infoblox DNS members may be running DNS, Reporting, Threat Protection, Threat Analytics, and TAXII services, this is not a finding. If any unnecessary services such as file distribution services are enabled on the DNS members, this is a finding.
Note: Once DNSSEC is enabled, the DNS service will be required to be running on the Grid Master.
V-214163
False
IDNS-7X-000130
Note: For Infoblox DNS systems on a Classified network, this requirement is Not Applicable.
By default all services other than those required for management are disabled. Validate that no additional services have been enabled for DNS members.
Navigate to Grid >> Grid Manager >> Services tab and review each service and member status at the top of the panel.
Depending upon purchased options, Infoblox DNS members may be running DNS, Reporting, Threat Protection, Threat Analytics, and TAXII services, this is not a finding. If any unnecessary services such as file distribution services are enabled on the DNS members, this is a finding.
Note: Once DNSSEC is enabled, the DNS service will be required to be running on the Grid Master.
M
3995