The DHCP service must not be enabled on an external authoritative name server.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-214225 | SRG-APP-000142-DNS-000014 | IDNS-7X-001000 | SV-214225r612370_rule | 2020-12-10 | 2 |
Description
The site DNS and DHCP architecture must be reviewed to ensure only the appropriate services are enabled on each Grid Member. An external authoritative name server must be configured to allow only authoritative DNS.
ℹ️ Check
Navigate to Grid >> Grid Manager >> Services tab.
Select "DHCP" and verify only internal Infoblox members have the service enabled.
If an external authoritative name server has DHCP enabled this is a finding.
✔️ Fix
Navigate to Data Management >> DHCP >> Members/Servers tab.
Select the Infoblox member using the check box and click "Stop" in the toolbar to disable the "DHCP" service.