Should we separate technologies or its ok to combine technology on your policies?
Again, it is up to you (or your program) to decide. Every policy compliance program will do things different. Personally, I like to keep the same OS versions in the same policy like I already mentioned. This is mostly based on logistical needs since I send reports to the same team for all RHEL issues, another team for Windows, etc...
I also prefer one policy per OS type as I feel it is easier to keep updated then having multiple RHEL/Windows/you name your OS/technology policy.
It really depends how you want to architect your policies. We have different owners for different OSes, so we have different policies based on OS, but different versions of the OS (for example win server 2k12r2 and 2k16) are in the same policy.
Let say i have different RHEL server in my network some are 7.x, some are 6.x and few 5.x, can I create a policy that will encompass all this servers into 1 policy?e.g. RHEL Policy which include RHEL 7.x RHEL 6.x and RHEL 5.x as technologies.
Is this a good practice? or should I separate the different version for the different RHEL servers?
Retrieving data ...