Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-90550

resolve.conf not created on RHEL 9.5 when using the DISA STIG at install

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • None
    • rhel-9.5
    • scap-security-guide
    • None
    • rhel-security-compliance
    • ssg_security
    • 2
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      What were you trying to do that didn't work?

      Installing RHEL 9.5 with the DISA STIG security framework with a static IP and DNS.

      The /etc/resolv.conf is not created due to the DISA STIG rule V-257949 that states if there is no dns entry in NetworkManager.conf to add "dns = none", while it also states that none or default are valid options. 

      This entry, "dns = none", causes there to be no /etc/resolv.conf file so you can not change the DNS the system uses after build.

      What is the impact of this issue to you?

      Can not change the DNS nameservers.

      Please provide the package NVR for which the bug is seen:

      How reproducible is this bug?:

      Everytime.

      Steps to reproduce

      1. Install RHEL 9.5 with the DISA STIG from ISO.
      2.  
      3.  

      Expected results

      /etc/resolv.conf is created and the ability to change the nameservers.

      Actual results

      /etc/resolv.conf is not create so you cannot change the DNS server from initial install.

              vpolasek@redhat.com Vojtech Polasek
              rhn-support-mralph Mike Ralph
              Vojtech Polasek Vojtech Polasek
              SSG Security QE SSG Security QE
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: