STIGQter: STIG Summary: Infoblox 7.x DNS Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

The Infoblox system must be configured to must protect the integrity of transmitted information.

DISA Rule

SV-214195r612370_rule

Vulnerability Number

V-214195

Group Title

SRG-APP-000439-DNS-000063

Rule Version

IDNS-7X-000590

Severity

CAT II

CCI(s)

• CCI-002418 - The information system protects the confidentiality and/or integrity of transmitted information.

Weight

10

Fix Recommendation

Enable that DNSSEC is by navigating to Data Management >> DNS >> Grid DNS properties tab.

Toggle Advanced Mode and select the "DNSSEC" tab.
Enable DNSSEC by selecting the check box.
When complete, click "Save & Exit" to save changes and exit the "Properties" screen.

Check Contents

Note: For Infoblox DNS systems on a Classified network, this requirement is Not Applicable.

Verify that DNSSEC is enabled by navigating to Data Management >> DNS >> Grid DNS properties tab.

Toggle Advanced Mode and review the "DNSSEC" tab to verify DNSSEC is enabled.

When complete, click "Cancel" to exit the "Properties" screen.

If DNSSEC validation is not enabled, this is a finding.

Vulnerability Number

V-214195

Documentable

False

Rule Version

IDNS-7X-000590

Severity Override Guidance

Note: For Infoblox DNS systems on a Classified network, this requirement is Not Applicable.

Verify that DNSSEC is enabled by navigating to Data Management >> DNS >> Grid DNS properties tab.

Toggle Advanced Mode and review the "DNSSEC" tab to verify DNSSEC is enabled.

When complete, click "Cancel" to exit the "Properties" screen.

If DNSSEC validation is not enabled, this is a finding.

Check Content Reference

M

Target Key

3995

Comments