Enable CIS Hardened Images

Enable CIS Hardened Images

CIS hardened images are images that come pre-hardened in accordance with the CIS benchmarks. They have increased security settings and increased cost.

Note: CIS images requires an administrator with Contributor or Owner permissions on the target Azure subscription to approve the use of this Marketplace image. Please ensure you understand the additional costs associated with the use of these images.

CIS hardened images help you achieve compliance with the following standards:

  • DoD Cloud Computing Security Recommendation Guide (SRG)

  • Payment Card Industry Data Security Standard (PCI DSS)

  • Federal Information Security Management Act (FISMA)

  • Federal Risk and Authorization Management Program (FedRAMP)

  • National Institute of Standards and Technology (NIST)

See the CIS website for additional information.

Nerdio Manager allows you to enable the use of CIS hardened images when creating desktop images, host pools, or hosts. The CIS hardened images are not available until you agree to the Marketplace terms, as described later in this topic.

Once enabled, CIS hardened images are available, for example, when creating a desktop image:

Note:

  • Nerdio Manager provides CIS Level 1 configuration profile benchmark. It is suitable for most environments and ensures baseline protection against common threats without heavily impacting the user experience or operational functionality.

  • CIS hardened images do not support Unified Application Management.

  • The following resources help you verify that your image has been hardened:

    • Base CIT CAT Report: This report outlines the status of unhardened images as provided by Microsoft.

    • CIS CAT Report: This report outlines the status of hardened images provided by CIS.

    • Exceptions: This report notes any items in the CIS hardened images that fall outside of CIS's recommended controls.

    You can access the most recent versions of these resources on the C:\ drive of your hardened image.

Accept the CIS legal terms

When a CIS image is selected, you may be prompted to accept the legal terms.

Note: Ensure you are logged on as an administrator with Contributor or Owner permissions on the target Azure subscription.

Was this article helpful?

0 out of 0 found this helpful
Have more questions? Submit a request

Comments (0 comments)

Article is closed for comments.