Product Name
CIS Hardened Images®
Product Version
All
Date
Problem
| Info |
|---|
I am having issues with my HI due to the CIS security recommendations in place. |
Solution
Reviewing the content within the corresponding Hardening Report and exceptions list is imperative for overall successfulsuccess, as there may be some settings that your organization needs to exempt itself from, due to unique operational requirements. The report will be located in C:\CIS Hardening Reports on Windows and \home\CIS_Hardened_Reports on Linux.
To find the specific recommendations that are causing the issue you will need to go through the Hardened Image Report, search key words and read the impact statements of the relating recommendations.
Search through the benchmark for the remediation that is causing the impact.
Through searching keywords, you should find which recommendations are causing the issue and then reverse the remediation directions to turn the recommendation off.
For example, if you are using Windows 2016 Server and you are having an issue with the RDP configuration, you should:
Login to CIS WorkBench - https://workbench.cisecurity.org/
Go to Benchmarks on the top Navigation bar
Search for Windows Server 2016
Navigate to the Hardening Report
Open the Hardening Report
Search for the word ‘RDP’ or other related words such as 'remote connection' using ctr+f
Go to the recommendations related to RDP and remote connections
Recommendation
18.9.59.3.9.3 (L1) Ensure 'Require use of specific security layer for remote (RDP) connections' is set to 'Enabled: SSL' (Automated)Relates to RDP.Read the recommendation
Under the Remediation section, there is an explanation of how to enable or disable the recommendation.
Rinse and repeat for each issue you are having.
Keywords; Hardened Image HI trouble
Content by Label
| Filter by label (Content by label) | ||||||
|---|---|---|---|---|---|---|
|
| Page Properties | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||
|