Infoblox systems must be configured with current DoD password restrictions.

From Infoblox 7.x DNS Security Technical Implementation Guide

Part of SRG-APP-000516-DNS-000500

Associated with: CCI-000366

SV-83113r1_rule Infoblox systems must be configured with current DoD password restrictions.

Vulnerability discussion

The Infoblox systems must be configured to meet current DoD password policy when using the Infoblox Local User Database as the authentication source.

Check content

Navigate to Administration >> Administrators >> Authentication Policy. If the only authentication type under "Authenticate users in this order" is "Local User Database", perform the following additional validation: Navigate to Grid >> Grid Manager >> Grid Properties >> Password tab. Verify the settings are configured in accordance with current DoD Policy. If the Infoblox system is configured to utilize a remote authentication system (Active Directory, RADIUS, TACACS+, or LDAP) which enforces policy, or the password settings meet current guidance this is not a finding.

Fix text

Navigate to Grid >> Grid Manager >> Grid Properties >> Password tab. Configure the system with appropriate values for password length, complexity, and expiration requirements.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer