Show Table of Contents
7.4. Performing Audit Scans
OpenSCAP integration in Red Hat Satellite Server provides the ability to perform audit scans on client systems. This section describes the methods available for performing these scans.
7.4.1. Using the Web Interface to Perform Audit Scans
This section describes how to use the Satellite web interface to perform audit scans.
Procedure 7.1. To Perform an Audit Scan Using the Web Interface:
- Log in to the Satellite web interface.
- Click →
- Click →
- Complete the
Schedule New XCCDF Scanpage. See Section 7.5.2.3, “Schedule Page” for information about the fields on this page.Warning
The XCCDF content is validated before it is run on the remote system. Specifying invalid command-line arguments can causespacewalk-oscapto fail to validate or run. Due to security concerns theoscap xccdf evalcommand only accepts a limited set of parameters.
Note
You can run the
rhn_check command to ensure that the action is being picked up by the client system.
# rhn_check -vv
If
rhnsd or osad are running on the client system, the action will be picked up by these services. To check if they are running, run one of the following commands.
For Red Hat Enterprise Linux 5 and 6:
# service rhnsd start# chkconfig rhnsd onOR# service osad start# chkconfig osad on
For Red Hat Enterprise Linux 7:
# systemctl enable rhnsd# systemctl start rhnsdOR# systemctl enable osad# systemctl start osad
To view the results of the scan, see Section 7.4.3, “Viewing the Results of SCAP Audits”.
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.