# Enabling Windows Security Benchmark Analysis

This section is dedicated to creating a new policy for "Benchmark Analysis", in the default groups all the necessary policies are active and selected.

The first step is to create a policy. From "Rules & Policies" -> "Policy Management" -> "Policy Rules" and click on "+Policy" to create a new policy.

<figure><img src="/files/0ErxmIRJGita71u1BIPO" alt=""><figcaption></figcaption></figure>

Select the module and type. Give a name for the policy and set the "Collection Interval". The default interval is 30 minutes. After the initial execution, the policy interval can be set to a value of 1440 minutes. The description is optional. The last step of the policy is the selection of the benchmark(s).

<figure><img src="/files/Nhu9XOVARV2GCSa8Y7Ig" alt=""><figcaption></figcaption></figure>

Then apply the policy from the "Group Management" settings. There is a default group in which all new agents are enrolled automatically. Click the three dots on the right of the grid and edit this group. Navigate on the page, select the "Windows Security Benchmarks" and click save button.

The final step is to enable the classification rules. Navigate to the "Rules & Policies" section on the left menu, go to "Artifact Classification" and search "Benchmark". Click three dots on the upright on the grid and click "Enable All Rules Displayed". When you enable the rules, you should see gray circles turn to green on the status column. After enabling all the rules displayed, click the three dots again and click "Force Run All Rules Displayed". This action will force rules to run immediately.

<figure><img src="/files/WKbuqXhaGg1MJJtUCOeR" alt=""><figcaption></figcaption></figure>

The collection and classification results can be observed from Security Assurance -> Hardening & Configuration Management.

<figure><img src="/files/nKaUIjht3FfvqRKeey5e" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.cloudcyte.com/getting-started/configuring-modules/network-security/enabling-windows-security-benchmark-analysis.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.