STIGQter: STIG Summary: Microsoft IIS 10.0 Server Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

The IIS 10.0 web server must only contain functions necessary for operation.

DISA Rule

SV-218793r561041_rule

Vulnerability Number

V-218793

Group Title

SRG-APP-000141-WSR-000075

Rule Version

IIST-SV-000118

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Remove all unapproved programs and roles from the production IIS 10.0 web server.

Check Contents

Click “Start”.

Open Control Panel.

Click “Programs”.

Click “Programs and Features”.

Review the installed programs. If any programs are installed other than those required for the IIS 10.0 web services, this is a finding.

Note: If additional software is needed, supporting documentation must be signed by the ISSO.

Vulnerability Number

V-218793

Documentable

False

Rule Version

IIST-SV-000118

Severity Override Guidance

Click “Start”.

Open Control Panel.

Click “Programs”.

Click “Programs and Features”.

Review the installed programs. If any programs are installed other than those required for the IIS 10.0 web services, this is a finding.

Note: If additional software is needed, supporting documentation must be signed by the ISSO.

Check Content Reference

M

Target Key

4052

Comments