Domain Name System (DNS) Security Requirements Guide

The DNS server implementation must implement the capability to centrally review and analyze audit records from multiple components within the system.

STIG ID: | SRG: SRG-APP-000745-DNS-000120 | Severity: Medium | CCI: | Vulnerability ID: V-263625

Description

Automated mechanisms for centralized reviews and analyses include Security Information and Event Management products.

Check

C-67525r982514_chk

Verify the DNS server implementation is configured to implement the capability to centrally review and analyze audit records from multiple components within the system. If the DNS server implementation is not configured to implement the capability to centrally review and analyze audit records from multiple components within the system, this is a finding.

Fix

F-67433r982036_fix

Configure the DNS server implementation to implement the capability to centrally review and analyze audit records from multiple components within the system.