Title

Infoblox Grid configuration must be backed up on a regular basis. (Cat II impact)

Discussion

The Infoblox Grid Master is the central point of management within an Infoblox Grid. The Grid Master retains a full copy of the configuration used for the entire Grid. In the event of system failure, a configuration backup must be preserved. An Infoblox Grid member may also be configured as a Grid Master Candidate, which is synchronized to the Grid Master. The Grid Master Candidate can be promoted in the event of system failure on the Grid Master.

Check Content

1. Navigate to Grid >> Grid Manager >> Members tab. 2. In the toolbar, click the drop-down menu for "Backup", "Schedule Backup". 3. Verify configuration of a remote backup option (TFTP, FTP, or SCP). Review the existence of backup files on the remote system. If a remote backup system is not configured, or a local backup procedure is not documented, this is a finding. If no remote or local backup is configured, but the Grid contains a Grid Master candidate, the severity of the finding is reduced.

Fix Text

1. Navigate to Grid >> Grid Manager >> Members tab. 2. In the toolbar, click the drop-down menu for "Backup", "Schedule Backup". Configure remote backup to TFTP, FTP, or SCP. 3. When complete, click "Save & Close" to save the changes and exit the "Properties" screen. 4. Perform a service restart if necessary. 5. Review the existence of backup files on the remote system.

Additional Identifiers

Rule ID: SV-233884r621666_rule

Vulnerability ID: V-233884

Group Title: SRG-APP-000516-DNS-000500

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.