Sep 03 2021 03:46 AM
Hello IIS experts. Please suggest on best strategy for hardening on-prem IIS farm to CIS standards. I'm also interested in recurring audit of the results.
There is a number of commercial products allowing to scan IIS for CIS Benchmarks.
The latest "CIS Benchmark for Microsoft IIS 10" available to download in PDF format free of charge at https://www.cisecurity.org/cis-benchmarks/. However in this instance CIS does not offer "Build kit". Depends on product to be hardened, CIS "build kit" can be set of scripts, GPO policy or similar to allow rapid hardening deployment.
Since there is no Official build kit I'm looking for alternatives. Can you please share your experience on this subject? I found few blogs but those are quite old.
Oct 04 2021 03:05 AM
1 month is passed, just checking if anyone has some good advice on the most optimal method. Thanks.
Aug 12 2022 12:13 PM
Mar 09 2023 07:22 AM
@tkonick Hi, would you like to share your useful links? I have the same challenge. BR Jytte
Mar 09 2023 01:15 PM
Mar 09 2023 01:17 PM
Oct 16 2023 01:36 PM