Check: IDNS-8X-400028
Infoblox 8.x DNS STIG:
IDNS-8X-400028
(in version v1 r1)
Title
The Infoblox system must display the appropriate security classification information. (Cat II impact)
Discussion
Configuration of the informational banner displays the security classification of the Infoblox system using both color and text. Text may be added for additional security markings.
Check Content
1. Log on to the Infoblox Grid Master or stand-alone system. 2. The appropriate security classification color and text must be displayed on the top of each configuration screen. 3. The output will also contain the text "Dynamic Page - Highest Possible Classification Is" and a colored bar associated with the classification. 4. Additional text may appear if configured by the administrator. If the security classification color and text are not displayed at the top of each configuration screen, this is a finding.
Fix Text
1. Navigate to Grid >> Grid Manager >> Grid Properties, or System >> System Manager >> System Properties if using a stand-alone configuration. 2. Select the "Security", "Advanced" tab. Click "Enable Security Banner". 3. Use the drop-down menus to select the Security Level and Security Level Color appropriate for each level. 4. Additional text can be entered if required by DoD or local policy. 5. When complete, click "Save & Close" to save the changes and exit the "Properties" screen. 6. Administrators should log out and close the web browser. 7. It may be necessary to clear the web browser cache for the banner to display or update on a session opened shortly after reconfiguration.
Additional Identifiers
Rule ID: SV-233886r621666_rule
Vulnerability ID: V-233886
Group Title: SRG-APP-000516-DNS-000500
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |