Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) Standard Does Not Work With oscap And scap-workbench.
Issue
The oscap or scap-workbench command outputs all the results as "notchecked" and it errors out with these warnings:
For RHEL6
OpenSCAP Error: Selector ID(V-38437) does not exist in Benchmark. [xccdf_policy.c:1670]
Unable to open file: '/root/U_RedHat_6_V1R12_Manual_STIG/DPMS_XCCDF_Benchmark_RHEL_6_STIG.xml' [oscap_source.c:221]
Could not find file /root/U_RedHat_6_V1R12_Manual_STIG/DPMS_XCCDF_Benchmark_RHEL_6_STIG.xml: No such file or directory. [sds.c:474]
For RHEL7
OpenSCAP Error: Unable to open file: '/root/U_Red_Hat_Enterprise_Linux_7_V1R0-2_Manual_STIG/VMS_XCCDF_Benchmark_SRG.xml' [oscap_source.c:264]
Could not find file /root/U_Red_Hat_Enterprise_Linux_7_V1R0-2_Manual_STIG/VMS_XCCDF_Benchmark_SRG.xml: No such file or directory. [sds.c:480]
Environment
- Red Hat Enterprise Linux 6 (RHEL6)
- with the contents of the "Red Hat 6 STIG" zip file from DISA's page for Unix/Linux Operating System STIGs
- Red Hat Enterprise Linux 7 (RHEL7)
- with the contents of the "Draft Red Hat 7 STIG" zip file from the same source as above.
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
