Forum Discussion
Security Baseline Version 23H2, greenfield deployment
Hi, Is there a best practice to start rolling out the Microsoft security baseline. I am in a Greenfield situation where I would like to use this baseline as a starting point. This by first adju...
I just started reviewing baselines and using them. I want to use them to do the Security Recommendations. My current plan is to build test systems. Let them take inventory, then apply the baselines to the systems.
I was then going to start adding software and see what breaks.
I don't know if that is best practice but I figure if I can use the baselines and still operate in my environment then none are an issue.
The hard part I guess is if something is an issue which policy is the problem. I'm hoping if I do find an issue then event logs should cover it. If it doesn't then I plan on breaking up the policies and applying them to other test machines to see which one breaks.
Luckily, I have VMs so rebuilds are relatively easy. But it is a time-consuming method.
I was then going to start adding software and see what breaks.
I don't know if that is best practice but I figure if I can use the baselines and still operate in my environment then none are an issue.
The hard part I guess is if something is an issue which policy is the problem. I'm hoping if I do find an issue then event logs should cover it. If it doesn't then I plan on breaking up the policies and applying them to other test machines to see which one breaks.
Luckily, I have VMs so rebuilds are relatively easy. But it is a time-consuming method.