The security baseline is an operating system security policy provided by Microsoft, which is submitted by the Microsoft security team, researchers, customers, and other contributors.
When an enterprise deploys a security baseline, it can automatically import all policies or configure the policies it needs, which can enrich protection functions and simplify settings.
In fact, providing a security baseline strategy is that Microsoft hopes to provide out-of-the-box security configuration, so as to save a lot of time for the enterprise security team to carefully deploy.
In the latest security baseline strategy, Microsoft brings ransomware protection to Windows 10 21H2, which is also a security feature that enterprises urgently need.
The security baseline strategy can be obtained through the Microsoft Security Compliance Toolkit, which is provided free of charge in the Microsoft Download Center for all enterprises in need to download and use. Microsoft Security Compliance Toolkit allows enterprise security administrators to download, analyze, test, edit and store Microsoft-recommended security configuration baselines for Windows and other Microsoft products while comparing them against other security configurations.
After downloading and deploying, the enterprise administrator can customize the implementation according to their own needs. Of course, don’t forget to test in time after deployment.