STIGQter: STIG Summary: Infoblox 8.x DNS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Jan 2021:

The Infoblox system must use the security configuration settings based on DoD security configuration or implementation guidance, including STIGs, NSA configuration guides, CTOs, and DTMs.

DISA Rule

SV-233881r621666_rule

Vulnerability Number

V-233881

Group Title

SRG-APP-000516-DNS-000500

Rule Version

IDNS-8X-400023

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Review network architecture and system configuration to ensure use of a defense-in-depth architecture that uses secure out-of-band management. Review system configuration to ensure that all administrators are properly authorized for the functions allowed through system rights.

1. Validate that both SRG and STIG DNS guidance is properly applied.
2. Navigate to Grid >> Grid Manager >> Services tab.
3. Click on each service that is running and review the "Service Status" of each member.
4. Click on the member and select "Stop" to disable the unnecessary service.

Check Contents

Infoblox systems are secure by design and use a number of access controls to prevent unauthorized usage. Infoblox systems are purpose built and do not provide privileged "root" level access, nor are they distributed as general purpose operating systems. By default all services including DNS are disabled on Infoblox systems. Services are enabled only as a result of administrator action.

1. Navigate to Grid >> Grid Manager >> Grid Properties, or System >> System Manager >> System Properties if using a stand-alone configuration.
2. Select the "Services" tab.
3. Review the enabled services.

If any unnecessary services are running on Infoblox systems, this is a finding.

Vulnerability Number

V-233881

Documentable

False

Rule Version

IDNS-8X-400023

Severity Override Guidance

Infoblox systems are secure by design and use a number of access controls to prevent unauthorized usage. Infoblox systems are purpose built and do not provide privileged "root" level access, nor are they distributed as general purpose operating systems. By default all services including DNS are disabled on Infoblox systems. Services are enabled only as a result of administrator action.

1. Navigate to Grid >> Grid Manager >> Grid Properties, or System >> System Manager >> System Properties if using a stand-alone configuration.
2. Select the "Services" tab.
3. Review the enabled services.

If any unnecessary services are running on Infoblox systems, this is a finding.

Check Content Reference

M

Target Key

5251

Comments