What is configuration management?
D4 ยท Operations ยท CompTIA Security+ SY0-701Configuration management is the process of establishing, maintaining, and documenting the known, secure configuration of IT systems and infrastructure โ ensuring systems remain in a compliant state and changes are tracked.
Key concepts: baseline configuration (the approved standard configuration), configuration item (CI) (any managed component), CMDB (Configuration Management Database) (stores all CI details), configuration drift (deviation from baseline).
Tools: Ansible, Puppet, Chef, SCCM, Group Policy.
Key concepts: baseline configuration (the approved standard configuration), configuration item (CI) (any managed component), CMDB (Configuration Management Database) (stores all CI details), configuration drift (deviation from baseline).
Tools: Ansible, Puppet, Chef, SCCM, Group Policy.
Configuration drift (systems deviating from baseline) creates security vulnerabilities. Automated configuration management (Ansible/Puppet) enforces baselines continuously. CIS Benchmarks provide hardening guidelines. SCAP (Security Content Automation Protocol) automates compliance checking against baselines.