An administrator is auditing laptops against the organization's security baseline. The baseline requires that critical operating-system updates be installed within 14 days of release. Which of the following findings would cause a laptop to be flagged as non-compliant?
The most recent Windows security update (released three weeks ago) is still not installed.
Passwords must be at least 14 characters and include three character classes.
The local firewall blocks unsolicited inbound connections by default.
BitLocker full-disk encryption is enabled with XTS-AES 128-bit.
A notebook that has not installed a critical cumulative security update released three weeks earlier violates the baseline's 14-day patch window and is therefore non-compliant. The other findings describe controls (full-disk encryption, an enabled firewall, and a strong password policy) that meet or exceed common security requirements and would not make the system non-compliant.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are critical updates and why are they important?
Open an interactive chat with Bash
What are the risks of using a non-compliant system?