openscap-ci
commented
5 years ago Can one of the admins verify this patch?
Closed sapariciol closed 4 years ago
openscap-ci
commented
5 years ago Can one of the admins verify this patch?
ggbecker
commented
5 years ago Hi @sapariciol, there is no easy way to convert your ansible roles to an audit profile. You need to understand what your ansible role do and identify which rule in the ComplianceAsCode/content covers that.
The ComplianceAsCode/content is the project which produces content consumed by OpenSCAP.
For example: to check some sshd configuration we can use this rule: SSHD Enable StrictModes.
So first you need to identify the mapping of your ansible roles to rules provided by ComplianceAsCode/content, then you can use SCAP-Workbench to taylor the profile and select these mapped rules to craft a profile representing your ansible roles.
This is some information you might wanna know, but I would need more info on what exactly you are trying to achieve.
sapariciol
commented
5 years ago I would like to have a customized profile in SCAP-Workbench with websites that my company needs in the network security part,
am creating profiles in scap-workbench from roles made in Ansible, but there are compatibility errors, I want to know if I can create audits from the roles created in Ansible?