🔥 3-day streak
ISC2 CISSP — Certified Information Systems Security Professional17 / 129
Question 17 of 129
A security architect adopts a vendor-published security baseline for the organization's Windows servers. During implementation, she discovers that 12 legacy application servers cannot support one of the baseline's mandatory controls (a modern TLS cipher configuration) because doing so would break a critical business application that the vendor no longer updates. Management insists the application must remain operational. What is the MOST appropriate action for the architect to take regarding the baseline?
Reviewed for accuracy · Report an issueNext question