Closed ejaronne closed 3 years ago
also, double check that we are adding the rule_id given we now know that is the primary key for emass - basically the same thing we learned with the xccdf2inspec rule id thing
from the email we recieved: "Additionally, we did confirm that asset matching criteria is checking against Host Name, MAC Address, and IP Address."
so by default we should encourge users to provide this info when we create a ckl.
Workaround for the time being is to provide the stigid metadata
Add stigid and title SID_NAMEs to .ckl output:
Use the value of profiles:name
For example, for a typical InSpec run, should look like this:
From a Nessus compliance scan converted to HDF via Heimdall_tools, should end up like:
(STIG Viewer uses the title to identify the "STIG" name, whereas eMASS uses the stigid to identify the "Benchmark" name.
Also, map HDF tag:stig_id to the value of Rule_Ver, for example: