STIGQter: STIG Summary: Microsoft IIS 8.5 Server Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Microsoft IIS 8.5 Server Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:SV-214405r508658_rule
V-214405
SRG-APP-000120-WSR-000070
IISW-SV-000115
CAT II
10
Open the IIS 8.5 Manager.
Click the IIS 8.5 web server name.
Click the "Logging" icon.
Click the "Browse" button and navigate to the directory where the log files are stored.
Right-click the log file name to review and click “Properties”.
Click the "Security" tab.
Set the log file permissions for the appropriate group(s).
Click "OK".
Select "Apply" in the "Actions" pane.
This check does not apply to service account IDs utilized by automated services necessary to process, manage, and store log files.
Open the IIS 8.5 Manager.
Click the IIS 8.5 web server name.
Click the "Logging" icon.
Click the "Browse" button and navigate to the directory where the log files are stored.
Right-click the log file name to review.
Click “Properties”.
Click the “Security” tab.
Verify log file access is restricted as follows.
SYSTEM - Full Control
Administrators - Full Control
If log access is not restriced as listed above, this is a finding.
V-214405
False
IISW-SV-000115
This check does not apply to service account IDs utilized by automated services necessary to process, manage, and store log files.
Open the IIS 8.5 Manager.
Click the IIS 8.5 web server name.
Click the "Logging" icon.
Click the "Browse" button and navigate to the directory where the log files are stored.
Right-click the log file name to review.
Click “Properties”.
Click the “Security” tab.
Verify log file access is restricted as follows.
SYSTEM - Full Control
Administrators - Full Control
If log access is not restriced as listed above, this is a finding.
M
4000