A company is rolling out 50 new Linux servers in its private cloud. Management wants every server to begin with the same hardened settings, and weekly compliance scans must be able to detect any drift from that approved state. Which of the following approaches would BEST satisfy these requirements across all the servers?
A secure baseline is a predefined, approved set of configuration settings that represents the organization's minimum security standard for a system. By applying a secure baseline image (or template) to each server at deployment and rescanning for deviations, administrators ensure consistent hardening and can quickly identify configuration drift. Firewall rules and antivirus signatures address only specific security controls, not the full system configuration, while security incident reports offer no preventive or consistency function.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a secure baseline, and how is it created?
Open an interactive chat with Bash
How do secure baselines help organizations maintain security?
Open an interactive chat with Bash
What tools or technologies are used to enforce secure baselines?