STIGQter: STIG Summary: Infoblox 7.x DNS Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

The DNS implementation must enforce a Discretionary Access Control (DAC) policy that limits propagation of access rights.

DISA Rule

SV-214211r612370_rule

Vulnerability Number

V-214211

Group Title

SRG-APP-000516-DNS-000099

Rule Version

IDNS-7X-000830

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Navigate to Administration >> Administrators, and reconfigure "Admins", "Groups", "Roles", "Permissions", and "Authentication Policy" to the desired permissions.

Check Contents

Infoblox utilizes a robust permission structure that provides for granular configuration of user access to the administrative interface.

Review the Infoblox Overview document for more information on access control and inheritance.

If an access policy limiting propagation of access rights is not configured, this is a finding.

Vulnerability Number

V-214211

Documentable

False

Rule Version

IDNS-7X-000830

Severity Override Guidance

Infoblox utilizes a robust permission structure that provides for granular configuration of user access to the administrative interface.

Review the Infoblox Overview document for more information on access control and inheritance.

If an access policy limiting propagation of access rights is not configured, this is a finding.

Check Content Reference

M

Target Key

3995

Comments