Deploy customized SCAP policies with Satellite 6.x

Solution Verified - Updated -

Issue

Red Hat Enterprise Linux 7 comes with openscap and scap-security-guide packages that enable users to set their systems to be compliant with security standards such as PCI-DSS, USGCB, STIG, … In many cases users need to customize these policies, select or deselect rules, change values such as password length, … SCAP Workbench from the scap-workbench package is graphical user interface tool suitable for customizing the policies. After customization is done, the user will have two files for deployment - the original source datastream and the customization file with changes. These can be deployed using the oscap tool or SCAP Workbench but Satellite 6.1 only allows to use one file at a time. In this article we will explore how to deploy customized (also known as tailored) security policies with Satellite 6.x.

Environment

Red Hat Satellite 6.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In