Changes made to Azure CIS Linux Hardened Images to integrate with Azure Update Manager.
Product Name
CIS Hardened Images - Azure
Product Version
Azure Update Manager
Date
Aug 9, 2023
Overview
The CIS Linux Hardened Images in Azure have been altered to incorporate Azure Update Manager.
Solution
Azure Update Manager requires a shell to execute the updates, gather instance information, and send information back to Azure from the omsagent
.To accommodate this, CIS Linux Hardened Images have removed the hardening for the recommendation ‘Ensure default user shell timeout is 900 seconds or less’. Configuring this recommendation in compliance with the CIS Benchmark will inhibit the functionality of Azure Update Manager with a CIS Linux Hardened Image.
Keywords;
Hardened Image, Azure Update Manager, CIS Linux Benchmarks
Content by Label