Information
This policy setting ensures that the Operating System has a host-based intrusion detection (HIDS) or prevention system (HIPS) installed.
Rationale:
A properly configured Host-based Intrusion Detection System (HIDS) or Host-based Intrusion Prevention System (HIPS) provides another level of defense against unauthorized access to critical servers. With proper configuration and logging enabled, such a system can stop and/or alert for attempts to gain unauthorized access to resources.
Impact:
A host-based intrusion detection (HIDS) or prevention system (HIPS) must be installed on the system.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Install a HIDS or HIPS on each server.
Default Value:
N/A
Additional Information:
Microsoft Windows Server 2016 Security Technical Implementation Guide:
Version 2, Release 2, Benchmark Date: May 04, 2021
Vul ID: V-224830
Rule ID: SV-224830r569186_rule
STIG ID: WN16-00-000140
Severity: CAT II