OpenScap on Centos 8 – CIS benchmark
OpenScap CIS compliance on centos 8:
Subscribe for more content like this:
PART2: Generate Ansible remediation playbook using OpenScap
You can use OpenScap to check, and then harden your Centos/Red Hat servers to comply with the CIS/STIG/PCI benchmarks. Centos 8 doesn’t seem to work out of the box, but follow these steps and you can have it up and running in a few minutes.
What’s covers:
• Installing the required packages
• Make some updates so Centos 8 will work with OpenScap
• Performing a scan of our Centos 8 server
• View the output on my webserver
All the commands I’m about to run can be found on this gist:
https://gist.github.com/dmccuk/b3533c2bc10f68a9c431c81c6f7cf166
LINKS:
https://github.com/RedHatDemos/SecurityDemos/blob/master/2019Labs/RHELSecurityLab/documentation/lab1_OpenSCAP.adoc
centos 8