CIS Hardened Image Level 2 on Microsoft Windows Server 2022
Overview
CIS enhanced images are pre-configured images built by the Internet Security Center (CIS®) for use in the Amazon Elastic Computing Cloud (Amazon EC2). It is a pre-configured security hardening mirror that follows strict security recommendations — CIS benchmarks, making it easier for organizations to meet compliance requirements. The image is not only pre-enhanced according to the CIS Benchmark Guidelines, but is also patched monthly in sync with software vendor updates. Key benefits: - Enhanced security: Follow globally recognized security configuration guidelines to mitigate risks such as malware, denial of service and authorization, and support your cloud security posture management (CSPM) plan. - Faster deployment: Pre-configured according to CIS standards, secure virtual machine images can be quickly deployed. - Cross-environment consistency: Ensure consistent security configurations in development, test, and production environments to reduce configuration drift and compatibility risks. - Cost-effectiveness: Reduces repair costs, reduces attack surface, and minimizes business losses due to security incidents. - Easier maintenance: Regular updates ensure the system is always up to date with the latest security standards and software patches. The image will not install or remove any additional software packages other than those already in the base image or required by the CIS Benchmark Recommendations. To prove compliance with the CIS Benchmark, an enhanced, industry-recognized guideline, each image includes an HTML report from the CIS Configuration Assessment Tool (CIS-CAT® Pro). Each CIS hardening image contains the following files: - Base_CIS-CAT_Report.html - Provides reports on running CIS-CAT Pro on the instance before CIS makes any changes (such as software updates, CIS hardening). - CIS-CAT_Report.html -- Provides a report on running CIS-CAT Pro after applying the corresponding CIS benchmark to the instance. - Exceptions.txt — Lists unapplied recommendations because these recommended configurations may prevent the image from being used in the current cloud service provider environment, require specific environment expertise, or prevent the image from integrating with cloud service provider services or extensions. These reports are located in the C:\CIS Hardening Reports directory. If this instance is used in a domain environment managed by global policies, most security settings will be changed and managed by domain policies. For more information or to obtain the corresponding CIS benchmark, visit https://www.cisecurity.org/cis-benchmarks or sign up for a free account on our community platform CIS WorkBench: https://workbench.cisecurity.org/ .
Highlights
- The CIS Enhanced Mirror is strengthened according to the CIS Benchmark, which is based on a consensus process and is widely recognized by the government, enterprises, industry, and academia.
- Using CIS-enhanced AMIs can reduce the time, cost, and risk of an organization's Amazon Web Services solution.
- The image is pre-configured to meet industry best practices developed and supported by CIS, and has enhanced account and local policies, firewall configurations, and computer-based and user-based management templates.
Details
Pricing
CIS Hardened Image Level 2 on Microsoft Windows Server 2022
Usage costs (220)
- ...
Dimension | Description | Cost/hour |
|---|---|---|
m5a.xlarge Recommended | m5a.xlarge | CN¥1.66 |
t3.micro | t3.micro | CN¥1.66 |
m5d.12xlarge | m5d.12xlarge | CN¥1.66 |
m6i.16xlarge | m6i.16xlarge | CN¥1.66 |
c5a.2xlarge | c5a.2xlarge | CN¥1.66 |
x2iedn.16xlarge | x2iedn.16xlarge | CN¥1.66 |
x2idn.32xlarge | x2idn.32xlarge | CN¥1.66 |
g5.4xlarge | g5.4xlarge | CN¥1.66 |
d2.4xlarge | d2.4xlarge | CN¥1.66 |
i3.large | i3.large | CN¥1.66 |
Vendor refund policy
Refunds are not currently supported
Legal
Vendor terms and conditions
Content disclaimer
Usage information
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
initial release
Additional details
Usage instructions
Once the instance is running, select “Get Windows Password” in the EC2 console and connect using a Remote Desktop Connection (RDP) client. The RDP client must support NTLMv2 authentication. Please refer to the link for more related information. Please apply the latest security updates as soon as the instance is launched.
Support
Vendor support
Amazon Web Services infrastructure support
Amazon Web Services Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.