For Windows operating systems it is possible to create a customized baseline with preferred security settings and export this as a group policy. This group policy can then be applied to systems.
For SQL 2012 the baseline only audits the security settings. The countermeasure description of the settings sometimes describe how to manually apply the setting. What is the recommended way to automatically apply security settings? Does Microsoft provide any tools for this?