- Lab
- A Cloud Guru
Run an OpenSCAP Compliance Scan on a Host
In this lab, we will be installing OpenSCAP and scanning a host for compliance. OpenSCAP is a powerful tool used to scan hosts to validate compliance with predetermined rule sets. This allows us to identify where we fall out of compliance and remediate the identified issues. *This course is not approved or sponsored by Red Hat.*
Path Info
Table of Contents
-
Challenge
Install SCAP Workbench
- Use VNC to connect to the lab server using it's public IP address on port 5901.
- To install SCAP Workbench, run the following command:
yum install -y scap-workbench
-
Challenge
Scan the Localhost for C2S Compliance and Create a Report
- Open SCAP-Workbench
- Applications Menu -> System Tools -> SCAP Workbench
- Choose RHEL7 when prompted to Select content to load:, then click the Load Content button
- From the Profile drop down, select C2S for Red Hat Enterprise Linux 7
- Click the radial button next to Local Machine for the Target
- Click the Scan button at the bottom to start the scan
- Once the scan is complete click Close in the Diagnostics window
- Click the Save Results drop down button and select HTML Report
- Type "scan_results.html" in the name and click Save
What's a lab?
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.