The DNS server implementation must require users to be individually authenticated before granting access to the shared accounts or resources.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-263629 | SRG-APP-000815-DNS-000160 | SV-263629r982523_rule | CCI-004045 | medium |
| Description | ||||
| Individual authentication prior to shared group authentication mitigates the risk of using group accounts or authenticators. | ||||
| STIG | Date | |||
| Domain Name System (DNS) Security Requirements Guide | 2024-07-02 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
IA-2(5)
1.00
- DISA · 4 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-004045
1.00
- DISA · 4 · disa_xccdf · related
Details
Check Text (C-263629r982523_chk)
Verify the DNS server implementation is configured to require users to be individually authenticated before granting access to the shared accounts or resources.
If the DNS server implementation is not configured to require users to be individually authenticated before granting access to the shared accounts or resources, this is a finding.
Fix Text (F-67437r982048_fix)
Configure the DNS server implementation to require users to be individually authenticated before granting access to the shared accounts or resources.