Title

The Infoblox system must be configured to display the appropriate security classification information. (Cat III impact)

Discussion

Configuration of the informational banner displays the security classification of the Infoblox system using both color and text. Text may be added for additional security markings.

Check Content

Log on to the Infoblox Grid Master. The appropriate security classification color and text must be displayed on the top of each configuration screen. The output will also contain the text "Dynamic Page - Highest Possible Classification Is" and a colored bar with the classification. Additional text may appear if configured by the administrator. If the security classification color and text are not displayed at the top of each configuration screen, this is a finding.

Fix Text

Navigate to Grid >> Grid Manager >> Grid Properties. Select "Security", advanced tab. Click "Enable Security Banner". Use the drop-down menus to select the security level to be displayed and background color appropriate for each level. Additional text can be entered if required by DoD or local policy. When complete, click "Save & Close" to save the changes and exit the "Properties" screen. Perform a service restart if necessary.

Additional Identifiers

Rule ID: SV-214221r612370_rule

Vulnerability ID: V-214221

Group Title: SRG-APP-000516-DNS-000500

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.