PCI 2.2.2 Disable all unnecessary and insecure services and protocols, Service IISADMIN Disabled

Information

As stated in Requirement 1.1.6, there are many protocols that a business may need (or have enabled by default) that are commonly used by malicious individuals to compromise a network. Including this requirement as part of an organization's configuration standards and related processes ensures that only the necessary services and protocols are enabled.

See Also

https://www.pcisecuritystandards.org/documents/PCI_DSS_v3.pdf

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b., CSCv6|9.1

Plugin: Windows

Control ID: babe07425e43a10a83fe9f8e7e3ea9d5c7c3083016458e6db5dc8928d353760c