STIGQter: STIG Summary: Microsoft IIS 10.0 Site Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Microsoft IIS 10.0 Site Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:SV-218766r558649_rule
V-218766
SRG-APP-000383-WSR-000175
IIST-SI-000239
CAT II
10
Follow the procedures below for each site hosted on the IIS 10.0 web server:
Open the IIS 10.0 Manager.
Click the site name under review.
In the "Action" Pane, click "Bindings".
Edit to change an existing binding and set the correct ports and protocol.
Review the website to determine if HTTP and HTTPs (e.g., 80 and 443) are used in accordance with those ports and services registered and approved for use by the DoD PPSM. Any variation in PPS will be documented, registered, and approved by the PPSM.
Follow the procedures below for each site hosted on the IIS 10.0 web server:
Open the IIS 10.0 Manager.
Click the site name under review.
In the "Action" Pane, click "Bindings".
Review the ports and protocols. If unknown ports or protocols are used, then this is a finding.
V-218766
False
IIST-SI-000239
Review the website to determine if HTTP and HTTPs (e.g., 80 and 443) are used in accordance with those ports and services registered and approved for use by the DoD PPSM. Any variation in PPS will be documented, registered, and approved by the PPSM.
Follow the procedures below for each site hosted on the IIS 10.0 web server:
Open the IIS 10.0 Manager.
Click the site name under review.
In the "Action" Pane, click "Bindings".
Review the ports and protocols. If unknown ports or protocols are used, then this is a finding.
M
4051