juanr1vargas
Level 4

Web server .NET Authorization rules

We are currently going over the Microsoft IIS 10.0 Server Security Technical Implementation Guide for our FNMS servers in a DoD environment. We have an open finding with vulnerability ID V-100185, which requires no other than "Administrators" to have authorized access. Currently "All Users" have access. 

My question is if we restrict this setting to only Administrators, would it cause any performance issues to the FNMS web or application server?

0 Kudos

This thread has been automatically locked due to inactivity.

To continue the discussion, please start a new thread.

2 Replies
ChrisG
Community Manager Community Manager
Community Manager

Can you elaborate on what resource you are talking about limiting the access to? Exactly what are you looking at that all users have access to?
(Did my reply solve the question? Click "ACCEPT AS SOLUTION" to help others find answers faster. Liked something? Click "KUDO". Anything expressed here is my own view and not necessarily that of my employer, Flexera.)

Hi @ChrisG, I am talking about the .NET Authorization rules in IIS Manager under the web server name. 

0 Kudos