Re: CIS Benchmark for Windows 10 PRO/Enterprise (Release 2*H2)
330 views
Skip to first unread message
Message has been deleted
Carlos Vendrell
May 30, 2023, 3:24:13 PM5/30/23
to Wazuh mailing list
Hi Diego,
I hope my message finds you well,
I hope my message finds you well,
I will verify this information further and will get back to you soon.
Regards,
Regards,
Carlos Vendrell
On Tuesday, May 30, 2023 at 3:40:14 PM UTC-3 Diego Zacché wrote:
Dear,
Good afternoon,
We are performing CIS Benchmark on a Desktop with Windows 10.
On the Wazuh console, it makes the "CIS Benchmark for Windows 10 Enterprise (Release 21H2)" available to us, but our Windows 10 Build is 22H2 Pro. Is there any way to adjust to the correct CIS Benchmark for our Windows 10 Build and Version???
Thanks in advance for your attention.-------------------------------------------------------------PT-BRPrezados,
Boa tarde,
Estamos realizando CIS Benchmark em um Desktop com Windows 10.
Na console do Wazuh, o mesmo nos disponibilizar o "CIS Benchmark for Windows 10 Enterprise (Release 21H2)", porém nossa Build do Windows 10 é a 22H2 Pro. Existe alguma naneira de ajustar para o CIS Benchmark correto para nossa Build e versão do Windows 10???
Desde já, obrigado pela atenção dispensada.
Carlos Vendrell
May 31, 2023, 8:58:21 AM5/31/23
to Wazuh mailing list
Hi Diego,
Please, let me share with you my investigation results.
Although the title on the SCA dashboard may not precisely align with your specific build name this is merely cosmetic and should not cause any concern.
I double-checked in my laboratory, and Wazuh is able to accurately detect the different Windows versions, including Windows 10 Build 22H2 Pro.
Although the benchmark name may not precisely align with your specific build name, the underlying functionality and checks performed by Wazuh are still applicable and relevant to your system.
Additionally, I would like to inform you that in the newer version 4.4.3 of Wazuh, the CIS Benchmark for Windows has received an update that addresses the following:
- Resolution of typos.
- Expansion of check coverage to encompass a wider range of security checks.
- Enhancement of rules implementation for improved accuracy.
- Improvement of texts and descriptions for better clarity and understanding.
- Resolution of reported issues to ensure a more stable and reliable experience.
Updating to the latest version of Wazuh will ensure that you benefit from these improvements, providing you with more robust and efficient results and also a correct name for CIS Benchmark for Windows.
You can check our release notes for more details about this:
Please, let me share with you my investigation results.
Although the title on the SCA dashboard may not precisely align with your specific build name this is merely cosmetic and should not cause any concern.
I double-checked in my laboratory, and Wazuh is able to accurately detect the different Windows versions, including Windows 10 Build 22H2 Pro.
Although the benchmark name may not precisely align with your specific build name, the underlying functionality and checks performed by Wazuh are still applicable and relevant to your system.
Additionally, I would like to inform you that in the newer version 4.4.3 of Wazuh, the CIS Benchmark for Windows has received an update that addresses the following:
- Resolution of typos.
- Expansion of check coverage to encompass a wider range of security checks.
- Enhancement of rules implementation for improved accuracy.
- Improvement of texts and descriptions for better clarity and understanding.
- Resolution of reported issues to ensure a more stable and reliable experience.
Updating to the latest version of Wazuh will ensure that you benefit from these improvements, providing you with more robust and efficient results and also a correct name for CIS Benchmark for Windows.
You can check our release notes for more details about this:
Release Notes:
https://documentation.wazuh.com/current/release-notes/release-4-4-3.html
Ruleset:
[#17202](https://github.com/wazuh/wazuh/pull/17202) Unified the SCA policy names.
If you have any further questions or concerns, please feel free to let me know. I'm here to assist you.
Kind regards,
Carlos Vendrell.
https://documentation.wazuh.com/current/release-notes/release-4-4-3.html
Ruleset:
[#17202](https://github.com/wazuh/wazuh/pull/17202) Unified the SCA policy names.
If you have any further questions or concerns, please feel free to let me know. I'm here to assist you.
Kind regards,
Carlos Vendrell.
Message has been deleted
Carlos Vendrell
May 31, 2023, 4:42:44 PM5/31/23
to Wazuh mailing list
Hello,
Thanks for your feedback,
To be able to provide you with more accurate information I will need some extra information here.
You mentioned you are a cloud client, are you using a trial? If so, some configurations are different.
Regards,
Carlos Vendrell
Thanks for your feedback,
To be able to provide you with more accurate information I will need some extra information here.
You mentioned you are a cloud client, are you using a trial? If so, some configurations are different.
Regards,
Carlos Vendrell
On Wednesday, May 31, 2023 at 4:08:56 PM UTC-3 Diego Zacché wrote:
Dear,
good afternoon,
We have different agent versions in our environment.
I noticed that for Linux we have version 4.4.3 and for Windows we have version 4.3.10. Is this right?
Remembering once again that my Wazuh is the Cloud version.
There, in agent, there is no way for me to choose or change the version, only for which OS it will be applied.
Is there any way I can run some command for it to update all agents?
Follow the prints to illustrate.-------------------------------------------------PT-BRPrezado,
boa tarde,
Temos em nosso ambiente diferentes versões de agente.
Reparei que para Linux temos a versão 4.4.3 e para Windows temos a versão 4.3.10. Isso está certo?
Lembrando mais uma vez que meu Wazuh é a versão Cloud.
Lá em agente não tem como eu escolher ou alterar versão, apenas para qual SO ela será aplicada.
Existe alguma forma de eu rodar algum comando para ele atualizar todos os agentes?
Segue os prints para ilustrar.
Diego Zacché
Jun 2, 2023, 7:25:46 AM6/2/23
to Wazuh mailing list
Dear,
good morning,
our version is not an evaluation.
We pay for Wazuh in the cloud.
I believe that the cloud version has differences.
You are not aware of Wazuh in cloud???
Carlos Vendrell
Jun 2, 2023, 4:43:27 PM6/2/23
to Wazuh mailing list
Hi Diego,
Thank you for confirming the details.
Sorry for the misunderstanding, we normally consider community posts to be from on-premise environments, since cloud customers receive direct support via ticket.
I strongly recommend creating a ticket in Jira using the following link:
By doing so, we will be able to provide you with specialized information and support based on your architecture and special needs.
It's important to note that community discussions are public, and it is not recommended to share private data through this channel. You can securely share confidential or critical information within the ticket. If necessary, we can then forward this data to our developers or core team in order to resolve the issue.
It's important to note that community discussions are public, and it is not recommended to share private data through this channel. You can securely share confidential or critical information within the ticket. If necessary, we can then forward this data to our developers or core team in order to resolve the issue.
Thank you for your understanding
Regards,
Carlos Vendrell
Regards,
Carlos Vendrell
Diego Zacché
Jun 2, 2023, 5:12:13 PM6/2/23
to Wazuh mailing list
Good afternoon,
OK, I'll open a ticket as directed.
Although I didn't share any private information, as I took care to hide the cluster from our console, I'm still grateful for the reminder.
Em quarta-feira, 31 de maio de 2023 às 17:42:44 UTC-3, Carlos Vendrell escreveu:
Reply all
Reply to author
Forward
0 new messages