[Open-scap] customizing remediation
Greg Silverman (CS)
Greg.Silverman at veritas.com
Thu Mar 16 21:15:36 UTC 2017
I am missing something when it comes to generating a customized fix script.
1. In SCAP Workbench I deselect rules I do not want.
2. I save the customization file.
3. When I scan with the customization file, it still reports evaluation results on *some* of the rules I deselected.
4. When I create the remediation script, with oscap xccdf generate fix, it generates a fix for the rules mentioned in 3.
This is the command I run
oscap xccdf generate fix --template urn:xccdf:fix:script:sh --profile xccdf_org.ssgproject.content_profile_stig-rhel7-server-upstream --output my-remediation-script.sh /usr/share/xml/scap/ssg/content/ssg-rhel7-ds-tailoring.xml
i.e., using the tailored xccdf file.
What am I missing?
Thanks,
Greg Silverman
Veritas Technologies
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/open-scap-list/attachments/20170316/38196e81/attachment.htm>
More information about the Open-scap-list
mailing list