IIST-SI-000251 – The IIS 10.0 website must have a unique application pool.

Details

Application pools isolate sites and applications to address reliability, availability, and security issues. Sites and applications may be grouped according to configurations, although each site will be associated with a unique application pool.

Solution

Open the IIS 10.0 Manager.

Click the site name under review.

Assign a unique application pool to each website.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_IIS_10-0_Y20M10_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.

References

800-53|CM-6b.
CAT|II
CCI|CCI-000366
Rule-ID|SV-218771r558649_rule
STIG-ID|IIST-SI-000251
STIG-Legacy|SV-109367
STIG-Legacy|V-100263
Vuln-ID|V-218771

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles