Changes made to Azure CIS Linux Hardened Images to integrate with Azure Update Manager.


Product Name

CIS Hardened Images - Azure

Product Version

Azure Update Manager

Date

Aug 9, 2023


Overview

The CIS Linux Hardened Images in Azure have been altered to incorporate Azure Update Manager.

Solution

Azure Update Manager requires a shell to execute the updates, gather instance information, and send information back to Azure from the omsagent.To accommodate this, CIS Linux Hardened Images have removed the hardening for the recommendation ‘Ensure default user shell timeout is 900 seconds or less’. Configuring this recommendation in compliance with the CIS Benchmark will inhibit the functionality of Azure Update Manager with a CIS Linux Hardened Image.

Keywords;

Hardened Image, Azure Update Manager, CIS Linux Benchmarks

Content by Label


Copyright © 2020

Center for Internet Security®