Using OSConfig to manage Windows Server 2025 security baselines

Carlos_Mayol​ thanks for getting back to me. You do recommend a valid approach, but from a customer experiance I would like to have a new baseline created based on the security requirments and a reporting tool for IT-Sec showing the differentiators. Running a massive amount of individual scripts to make settings and the current reporting is not a good customer value delivered.

In a perfect world.

1. We want to create our own baseline in Excel
2. Compare server values with the baseline and get an excel / csv report
3. Use PowerBi or Reporting Tools to show the real world gaps, how often they do occur on what system / AD OU / OS / region / IP Subnet and from there "fix" the compliance issues.

Don't get me wrong I am excited on how simple the OSConfig is, but in the current state the tool will hardly be used by customers as we need to develop all the reporting / comparing or wait for a third party to deliver on that.