Below I document some useful commands that helped me to run openscap eval profiles.
First, install the neccessary packages:
zypper in openscap scap-security-guide openscap-utils
Then I query which profiles the respective xccdf.xml provide.
Get profiles:
oscap info "/usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml"
Now I run the command to evaluate the system with the desired profile:
oscap xccdf eval --profile stig --results /tmp/`hostname`-ssg-results.xml --report /tmp/`hostname`-ssg-results.html --oval-results /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml
If we use SUSE Manager we simply need to schedule audit jobs inside of system details -> audit page and will also receive the evaluation reports inside SUSE Manager system detail Audit page.