Information
This policy setting ensures that the Operating System has a host-based intrusion detection (HIDS) or prevention system (HIPS) installed.
Rationale:
A properly configured Host-based Intrusion Detection System (HIDS) or Host-based Intrusion Prevention System (HIPS) provides another level of defense against unauthorized access to critical servers. With proper configuration and logging enabled, such a system can stop and/or alert for attempts to gain unauthorized access to resources.
Impact:
A host-based intrusion detection (HIDS) or prevention system (HIPS) must be installed on the system.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Install a HIDS or HIPS on each server.
Default Value:
N/A
Additional Information:
Microsoft Windows Server 2019 Security Technical Implementation Guide:
Version 2, Release 1, Benchmark Date: November 13, 2020
Vul ID: V-205851
Rule ID: SV-205851r569188_rule
STIG ID: WN19-00-000120
Severity: CAT II