I’m wondering about documentation about framework for CIS checklists. I’ve found the older ones https://help.hcltechsw.com/bigfix/10.0/compliance/Compliance/SCM_Users_Guide/c_understanding_the_output.html which is completly different to eg. folder structure in RHEL 7 or 8.
This is more of a reference and not the only way. We have been creating custom SCM Checklists. If you have any specific questions, let me know.
Hi, thanks for your reply and offer. Two questions so far:
Deploy&run fixlet creates some files in /var/opt/BESClient/__BESData/__SCMData/ like -rw-------. 1 root root 5466 Jun 29 01:55 0db28230971655085fa310d74b306641484028a3.out -rw-------. 1 root root 0 Jun 29 01:55 0db28230971655085fa310d74b306641484028a3.out.err -rw-------. 1 root root 13 Jun 29 01:55 0db28230971655085fa310d74b306641484028a3.out.metadata containing results from CIS checks. Unfortunately I didn’t find a way to check which file(name) belongs to which check.
We’ve created adjusted some checks so we have custom checks in custom site. In case of syncing from external site, how can I easy identify my custom checks? I’ve already added a prefix like “[Custom]” in the checkname. Using wizard “syncronize custom checks” this prefix is not visible.
