I’m new to Rapid7, What are the scan engine policies and agent-based policies, and what actions can be performed with them? How can these policies be beneficial?
These look for CIS and DISASTIGS related compliance vs vulnerabilities.
This document provides prescriptive guidance for establishing a secure configuration posture for Microsoft Windows. This secure configuration guide is based on Microsoft Windows Server 2019 and is intended for all versions of the Server 2019 operating system, including older versions. This secure configuration guide was tested against Microsoft Windows Server 2019 Datacenter . To ensure all new and updated group policy objects (GPOs) are installed on the system, please download the newest version of the ADMX/ADML templates for Server 2019 . Templates can be downloaded from Microsoft at: Download ADMX Templates for Windows 11 October 2021 Update [21H2] from Official Microsoft Download Center . To obtain the latest version of this secure configuration guide, please visit https://www.cisecurity.org/cis-benchmarks/ . If you have questions, comments, or have identified ways to improve this guide, please write us at feedback@cisecurity.org . Items in this profile apply to Member Servers and intend to: - be practical and prudent; - provide a clear security benefit; and - not inhibit the utility of the technology beyond acceptable means. - AD Certificate Services - DHCP Server - DNS Server - File Server - Hyper-V - Network Policy and Access Services - Print Server - Remote Access Services - Remote Desktop Services - Web Server Items in this profile also apply to Member Servers that have the following Roles enabled: - be practical and prudent; - provide a clear security benefit; and - not inhibit the utility of the technology beyond acceptable means. - AD Certificate Services - DHCP Server - DNS Server - File Server - Hyper-V - Network Policy and Access Services - Print Server - Remote Access Services - Remote Desktop Services - Web Server
1 Like