STIGQter: STIG Summary: Microsoft IIS 8.5 Site Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Microsoft IIS 8.5 Site Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:SV-214478r508659_rule
V-214478
SRG-APP-000383-WSR-000175
IISW-SI-000239
CAT II
10
Follow the procedures below for each site hosted on the IIS 8.5 web server:
Open the IIS 8.5 Manager.
Click the site name under review.
In the “Action” Pane, click “Bindings".
Edit to change an existing binding and set the correct ports and protocol.
Review the website to determine if HTTP and HTTPs (e.g., 80 and 443) are used in accordance with those ports and services registered and approved for use by the DoD PPSM. Any variation in PPS will be documented, registered, and approved by the PPSM.
Follow the procedures below for each site hosted on the IIS 8.5 web server:
Open the IIS 8.5 Manager.
Click the site name under review.
In the “Action” Pane, click “Bindings”.
Review the ports and protocols. If unknown ports or protocols are used, then this is a finding.
V-214478
False
IISW-SI-000239
Review the website to determine if HTTP and HTTPs (e.g., 80 and 443) are used in accordance with those ports and services registered and approved for use by the DoD PPSM. Any variation in PPS will be documented, registered, and approved by the PPSM.
Follow the procedures below for each site hosted on the IIS 8.5 web server:
Open the IIS 8.5 Manager.
Click the site name under review.
In the “Action” Pane, click “Bindings”.
Review the ports and protocols. If unknown ports or protocols are used, then this is a finding.
M
4001