<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=Windows-1252">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 5 2 4 2 4 2 2 3;}
@font-face
{font-family:inherit;
panose-1:2 11 6 4 2 2 2 2 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin-top:0in;
margin-right:0in;
margin-bottom:8.0pt;
margin-left:0in;
line-height:106%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-fareast-language:EN-US;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.ui-provider
{mso-style-name:ui-provider;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;
mso-ligatures:standardcontextual;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:768232469;
mso-list-template-ids:258741198;}
@list l0:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1
{mso-list-id:2004310172;
mso-list-template-ids:1279698788;}
@list l1:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level2
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level3
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level5
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level6
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level8
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level9
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2
{mso-list-id:2045982064;
mso-list-template-ids:-1459160506;}
@list l2:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level2
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level3
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level5
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level6
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level8
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level9
{mso-level-number-format:bullet;
mso-level-text:\F0B7 ;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style>
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">
<div class="WordSection1">
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in">Product:</span></b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"><br>
BigFix Compliance</span><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"> </span></b><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in">Title:</span></b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"><br>
Updated DISA STIG Checklist for MS IIS 10.0 </span><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"> </span></b><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in">Security Benchmark:</span></b><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;background:white">Microsoft IIS 10.0 STIG, Site
</span><span lang="EN-IN" style="font-size:10.5pt;font-family:"inherit",serif;color:black;background:white">V2R7,
</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;background:white">Server
</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in">V2R8
</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"><br>
<br>
<b>Published Sites:</b></span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#2F2F2F;border:none windowtext 1.0pt;padding:0in"><br>
</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#222222;border:none windowtext 1.0pt;padding:0in">DISA STIG Checklist for
</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in">MS IIS 10.0</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#222222;border:none windowtext 1.0pt;padding:0in">,
site version 8<br>
<span style="background:white">(The site version is provided for air-gap customers.)</span></span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"><br>
<br>
</span><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in">Details:</span></b><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="color:#2F2F2F;mso-list:l1 level1 lfo1;background:white">
<span lang="EN-IN" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in">Both analysis and remediation checks are included</span><span lang="EN-IN"><o:p></o:p></span></li><li class="MsoNormal" style="color:black;mso-list:l1 level1 lfo1;background:white">
<span lang="EN-IN" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">Some of the checks allow you to use the parameterized setting to enable customization for compliance evaluation. Note that parameterization
and remediation actions require the creation of a custom site.</span><span lang="EN-IN"><o:p></o:p></span></li><li class="MsoNormal" style="color:black;mso-list:l1 level1 lfo1;background:white">
<span lang="EN-IN">Modified check ‘V-218798 </span><span lang="EN-IN">The IIS 10.0 web server must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabled.’ To avoid the scenario as this check not coming back as compliant.</span><span lang="EN-IN"><o:p></o:p></span></li><li class="MsoNormal" style="color:black;mso-list:l1 level1 lfo1;background:white">
<span class="ui-provider"><span lang="EN-IN">Removed the duplicate relevance statements on the checks.</span></span><span lang="EN-IN"><o:p></o:p></span></li></ul>
<p style="margin:0in;background:white"><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"> </span><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in">Actions to take:</span></b><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="color:#2F2F2F;mso-list:l2 level1 lfo2;background:white">
<span lang="EN-IN" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">To subscribe to the above site, you can use the License Overview Dashboard to enable and gather the site. Note that you must be
entitled to the BigFix Compliance product and you must be using BigFix version 9.2 and later.</span><span lang="EN-IN"><o:p></o:p></span></li><li class="MsoNormal" style="color:#2F2F2F;mso-list:l2 level1 lfo2;background:white">
<span lang="EN-IN" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">If you use custom sites, update your custom sites accordingly to use the latest content. You can synchronize your content by using
the Synchronize Custom Checks wizard. For more information, see </span><span lang="EN-IN" style="color:black"><a href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fhelp.hcltechsw.com%2Fbigfix%2F10.0%2Fcompliance%2FCompliance%2FSCM_Users_Guide%2Fc_using_synchronize_custom_checks_wiz.html&data=05%7C01%7Csaidinesh.ck%40hcl.com%7C5eaa0fe7f9a8429037af08da5434d4cc%7C189de737c93a4f5a8b686f4ca9941912%7C0%7C0%7C637914883135877412%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=FoprhBtYUWsbbumeCwmdB5REB2%2B8ly8ZRcX77LLdSIs%3D&reserved=0" target="_blank" title="Original URL: https://help.hcltechsw.com/bigfix/10.0/compliance/Compliance/SCM_Users_Guide/c_using_synchronize_custom_checks_wiz.html. Click or tap if you trust this link."><span lang="EN-US" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">https://help.hcltechsw.com/bigfix/10.0/compliance/Compliance/SCM_Users_Guide/c_using_synchronize_custom_checks_wiz.html</span></a></span><span lang="EN-IN"><o:p></o:p></span></li></ul>
<p style="margin:0in;background:white"><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"> <o:p></o:p></span></p>
<p style="margin:0in;background:white"><b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in">More information:</span></b><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in"><br>
</span><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in">To know more about the BigFix Compliance SCM checklists, please see the following resources:</span><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="color:black;mso-list:l0 level1 lfo3;background:white">
<span lang="EN-IN" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">BigFix Forum:<br>
</span><span lang="EN-IN"><a href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fforum.bigfix.com%2Fc%2Frelease-announcements%2Fcompliance&data=05%7C01%7Csaidinesh.ck%40hcl.com%7C5eaa0fe7f9a8429037af08da5434d4cc%7C189de737c93a4f5a8b686f4ca9941912%7C0%7C0%7C637914883135877412%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=Ro6Wm7SQxl97xa6jZT42%2BYyMzvS5wnMjxtsHdy0UR%2BQ%3D&reserved=0" target="_blank" title="Original URL: https://forum.bigfix.com/c/release-announcements/compliance. Click or tap if you trust this link."><span lang="EN-US" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">https://forum.bigfix.com/c/release-announcements/compliance</span></a></span><span lang="EN-IN"><o:p></o:p></span></li><li class="MsoNormal" style="color:black;mso-list:l0 level1 lfo3;background:white">
<span lang="EN-IN" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;color:#222222;border:none windowtext 1.0pt;padding:0in">BigFix Compliance SCM Checklists:<br>
</span><span lang="EN-IN"><a href="https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbigfix-wiki.hcltechsw.com%2Fwikis%2Fhome%3Flang%3Denus%23!%2Fwiki%2FBigFix%2520Wiki%2Fpage%2FSCM%2520Checklists&data=05%7C01%7Csaidinesh.ck%40hcl.com%7C5eaa0fe7f9a8429037af08da5434d4cc%7C189de737c93a4f5a8b686f4ca9941912%7C0%7C0%7C637914883135877412%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=tFmeo1o19iK74IdmVwZBvh66CWQE1XeDCtcluA3cyZ0%3D&reserved=0" target="_blank" title="Original URL: https://bigfix-wiki.hcltechsw.com/wikis/home?lang=enus#!/wiki/BigFix%20Wiki/page/SCM%20Checklists. Click or tap if you trust this link."><span lang="EN-US" style="font-size:10.0pt;line-height:106%;font-family:"inherit",serif;border:none windowtext 1.0pt;padding:0in">https://bigfix-wiki.hcltechsw.com/wikis/home?lang=enus#!/wiki/BigFix%20Wiki/page/SCM%20Checklists</span></a></span><span lang="EN-IN"><o:p></o:p></span></li></ul>
<p style="margin:0in;background:white"><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:black;border:none windowtext 1.0pt;padding:0in"> </span><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p style="margin:0in;background:white"><span lang="EN-IN" style="font-size:10.0pt;font-family:"inherit",serif;color:#201F1E;border:none windowtext 1.0pt;padding:0in">We hope you find this latest release of SCM content useful and effective. Thank you!<br>
<br>
<i> -- The BigFix Compliance team</i></span><span lang="EN-IN" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN"><o:p> </o:p></span></p>
</div>
</body>
</html>