Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) Standard Does Not Work With oscap And scap-workbench.
Issue
The oscap or scap-workbench command outputs all the results as "notchecked" and it errors out with these warnings:
For RHEL6
OpenSCAP Error: Selector ID(V-38437) does not exist in Benchmark. [xccdf_policy.c:1670]
Unable to open file: '/root/U_RedHat_6_V1R12_Manual_STIG/DPMS_XCCDF_Benchmark_RHEL_6_STIG.xml' [oscap_source.c:221]
Could not find file /root/U_RedHat_6_V1R12_Manual_STIG/DPMS_XCCDF_Benchmark_RHEL_6_STIG.xml: No such file or directory. [sds.c:474]
For RHEL7
OpenSCAP Error: Unable to open file: '/root/U_Red_Hat_Enterprise_Linux_7_V1R0-2_Manual_STIG/VMS_XCCDF_Benchmark_SRG.xml' [oscap_source.c:264]
Could not find file /root/U_Red_Hat_Enterprise_Linux_7_V1R0-2_Manual_STIG/VMS_XCCDF_Benchmark_SRG.xml: No such file or directory. [sds.c:480]
Environment
- Red Hat Enterprise Linux 6 (RHEL6)
- with the contents of the "Red Hat 6 STIG" zip file from DISA's page for Unix/Linux Operating System STIGs
- Red Hat Enterprise Linux 7 (RHEL7)
- with the contents of the "Draft Red Hat 7 STIG" zip file from the same source as above.
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
