cyberark / CYBRHardeningCheck

A utility to check CyberArk component servers hardening status
GNU General Public License v3.0
53 stars 25 forks source link

Hardening HealthCheck for CPM/PSM and Report results in Warning despite applying changes #100

Open AK3590 opened 2 years ago

AK3590 commented 2 years ago

Summary

Applied Hardening HealthCheck Script run ver3.2 for our CPM component. It results with warnings. Upon making the changes and re-run it still results in some Warnings.

Steps to Reproduce

Ran the Healthcheck Harden script in CPM / PSM component and made changes to the CPM/PSM component permissions / access pertaining to the warning results - but post changes and re-run script warning still persist. Looks Bug in the script.

Expected Results

Expected Result is to have compliance in Hardening of the CyberArk components. but results with warnings despite applying changes and relevant policies.

Actual Results

Actual Results and the Post Run results are attached.

Reproducible

Issue has been reported to CyberArk Member : Charles Vinet and he confirmed that in LAB he also have the same result discrepancies in his Health Check reports.

Expecting a proper resolution from cyberark support to have this fixed.

Version/Tag number

HealthCheck - ver 3.2

PSM / CPM - ver 12.1 [ recently upgraded and hardened ]

Environment setup

Additional Information

Details are mentioned in the attachment.

CA Hardening HealthCheck - Status.xlsx

Initial Run Results.zip Post Run Results - After Applying Changes.zip