ALCM
These systems no longer receive vendor patches and update.
What is end of life?
No one should have access to this privelege.
What are local admin rights?
Our scan needs this account to run authenticated.
Our cloud configuration reviews are based on this industry baseline.
What are the CIS Foundations Benchmark?
Virtual machine monitor (VMM) is an alternative for this term.
What is a hypervisor?
The asset workpaper is the policy review for this complementary objective.
What is vulnerability scanning?
This tool binds the device ID to the user ID for MFA.
What is Trusted Platform Module (TPM)?
What is a VM?
We test M365 with this account.
What is a Global Reader?
What is ESXi?
This type of scan sends packets to find unknown devices.
What is active discovery?
Management uses this to design all controls for AD.
What is the IT Risk Assessment?
Credential accuracy is confirmed with this plugin.
What is SMB Log-in possible?
These tested policies support authentication session security.
What is conditional access?
These two types of traffic should be segmeneted.
What are management and migration?
This source of hardening guidelines is associated with NIST clients.
What are the DISA STIGs?
True or False: If no user has local admin rights, LAPS testing is not needed.
What is FALSE?
This port is used to access Nessus
AWS collects logs and alerts in this console.
What is CloudWatch / CloudTrails?
EDR may not be on the guest system if this type of monitoring is not set-up.
What is introspective monitoring?
This tool can support the goals of an authorized software inventory (not an allow-list).
What is a web filter?
This privilege model replaces default security group membership.
What are tiered admin rights?
This port is used to access the Arrow Management Console.
What is 20443?
This common MFA type is recommended to be disabled by the CIS Foundations benchmark.
What is SMS?
These are used to generate workstations for virtualized desktop infrastructure (VDI) set-ups.
What are resource pools?