<div>
<div class="content wysiwyg-content">
Hi there, <br />
<br />
i need help to write a windows power shell script to run a command to check if IIS_IUSRS group have access to the iisWasKey revoked.<br />
<br />
- I need the script to pull the windows server &lt;MachineGUID&gt; dynamically before running the command:<br />
<br />
- Obtain the machine GUID at the Registry Value &quot;MachineGuid&quot; in the Registry Key: HKEY_LOCAL_MACHINE\SOFTWAR<wbr />E\Microsof<wbr />t\Cryptogr<wbr />aphy<br />
<br />
Next, open a command prompt and run the following icacls command, ensuring that BUILTIN\IIS_IUSRS(R) has been removed:<br />
<br />

<pre><code id="code-10-29029539-1">icacls %ALLUSERSPROFILE%\Microsoft\Crypto\RSA\MachineKeys\76944fb33636aeddb9590521c2e8815a_&lt;MachineGUID&gt;</code></pre>
<br />
<b>Refernce to this is:</b> 3.11 Ensure 'encryption providers' are locked down of <a href="https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.8.0.pdf" rel="ugc">https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.8.0.pdf</a><br />
<br />
Great thanks!
</div>
</div>


Hi there, 

i need help to write a windows power shell script to run a command to check if IIS_IUSRS group have access to the iisWasKey revoked.

- I need the script to pull the windows server <MachineGUID> dynamically before running the command:

- Obtain the machine GUID at the Registry Value "MachineGuid" in the Registry Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography

Next, open a command prompt and run the following icacls command, ensuring that BUILTIN\IIS_IUSRS(R) has been removed:

(CODE)

Refernce to this is: 3.11 Ensure 'encryption providers' are locked down of https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.8.0.pdf

Great thanks!

Windows Powershell script help to check if IIS_IUSRS group have access to the iisWasKey revoked

Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework. PowerShell provides full access to the Component Object Model (COM) and Windows Management Instrumentation (WMI), enabling administrators to perform administrative tasks on both local and remote Windows systems as well as WS-Management and Common Information Model (CIM) enabling management of remote Linux systems and network devices.

Powershell

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

Microsoft IIS Web Server

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.