LAB BASELINES - Findings

Showing 1 unique vulnerabilities (1 total) (filtered)

V-218786 CAT II Both the log file and Event Tracing for Windows (ETW) for th...

1 asset 1 Closed Microsoft IIS 10.0 S...

Hostname	IP Address	Status	Assigned To	Last Scan	Actions
SCHR-P3-DP-001	164.231.170.44			2026-03-12
Finding Details Evaluate-STIG 1.2601.0 (Scan-IIS10_0_Server_Checks) found this to be OPEN on 03/05/2026 ResultHash: 6A6094447CB8DE66FC6303CBDD8749BE276169CF ~~~~~ File is the only option selected. Comments Manual check shows settings as follows: Both ETW and Log file logging are enabled. This is Not a Finding

Check Text

Note: If the server is hosting WSUS, this is Not Applicable. Open the IIS 10.0 Manager. Click the IIS 10.0 server name. Click the "Logging" icon. Under Log Event Destination, verify the "Both log file and ETW event" radio button is selected. If the "Both log file and ETW event" radio button is not selected, this is a finding.

Fix Text

Open the IIS 10.0 Manager. Click the IIS 10.0 server name. Click the "Logging" icon. Under Log Event Destination, select the "Both log file and ETW event" radio button. Under the "Actions" pane, click "Apply".

Finding Details

Comments

Check Text

Fix Text