The Windows 2012 DNS Server must maintain the integrity of information during preparation for transmission.

An XCCDF Rule

Description

Information can be either unintentionally or maliciously disclosed or modified during preparation for transmission, including, for example, during aggregation, at protocol transformation points, and during packing/unpacking. These unauthorized disclosures or modifications compromise the confidentiality or integrity of the information.

ID: SV-215635r561297_rule
Version: WDNS-SC-000029
Severity: Medium
References: CCI-002421
Updated: 24 days ago

Remediation Templates

Sign, or re-sign, the hosted zone(s) on the DNS server being validated.

Log on to the Windows 2012 DNS server using the account designated as Administrator or DNS Administrator.

Press Windows Key + R, execute dnsmgmt.msc.
On the opened DNS Manager snap-in from the left pane, expand the server name for the DNS server, and then expand Forward Lookup Zones.

From the expanded list, right-click to select the zone (repeat for each hosted zone), point to DNSSEC, and then click Sign the Zone, either using approved saved parameters or approved custom parameters.

The Windows 2012 DNS Server must maintain the integrity of information during preparation for transmission.

Description

Remediation Templates

A Manual Procedure