Skip to main content
CUI

STIG Rule - V-215418

Back to STIG Browser

V-215418

SV-215418r991589_rule

CAT II

NIS maps must be protected through hard-to-guess domain names on AIX.

From: IBM AIX 7.x Security Technical Implementation Guide (V3R2)

Description

<VulnDiscussion>The use of hard-to-guess NIS domain names provides additional protection from unauthorized access to the NIS directory information.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

Check Procedure

Check the domain name for NIS maps using command: # domainname If no ouput is returned or the name returned is simple to guess, such as the organization name, building, or room name, etc., this is a finding.

Fix Text

Change the NIS domain name to a value difficult to guess. Consult vendor documentation for the required procedure.

CCI Reference

CCI-000366
Created
2026-04-07 20:08:18
Last Updated
2026-04-07 20:08:18
Back to Browse
CUI