December 2017
Intermediate to advanced
364 pages
7h 30m
English
Content preview from Security Automation with Ansible 2
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Continuous security scans and reports for OpenSCAP using Ansible Tower
OpenSCAP is a set of security tools, policies, and standards to perform security compliance checks against the systems by following SCAP. SCAP is the U.S. standard maintained by NIST.
The SCAP scanner application reads a SCAP security policy and checks whether the system is compliant with it. It goes through all of the rules defined in the policy one by one and reports whether each rule is fulfilled. If all checks pass, the system is compliant with the security policy.
OpenSCAP follows these steps to perform scanning on your system:
- Install SCAP Workbench or OpenSCAP Base (for more information, visit https://www.open-scap.org)
- Choose a policy
- Adjust your settings
- Evaluate ...