Use openscap on SLES and SUSE Manager

Below I document some useful commands that helped me to run openscap eval profiles.

First, install the neccessary packages:

zypper in openscap scap-security-guide openscap-utils

Then I query which profiles the respective xccdf.xml provide.

Get profiles:

oscap info "/usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml"

Now I run the command to evaluate the system with the desired profile:

oscap xccdf eval --profile stig --results /tmp/`hostname`-ssg-results.xml --report /tmp/`hostname`-ssg-results.html --oval-results /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml

If we use SUSE Manager we simply need to schedule audit jobs inside of system details -> audit page and will also receive the evaluation reports inside SUSE Manager system detail Audit page.

Diese Webseite verwendet Cookies. Durch die weitere Nutzung stimmen Sie der Verwendung von Cookies zu.