In this lab, we will be installing OpenSCAP and scanning a host for compliance. OpenSCAP is a powerful tool used to scan hosts to validate compliance with predetermined rule sets. This allows us to identify where we fall out of compliance and remediate the identified issues.
*This course is not approved or sponsored by Red Hat.*
Learning Objectives
Successfully complete this lab by achieving the following learning objectives:
- Install SCAP Workbench
- Use VNC to connect to the lab server using it’s public IP address on port 5901.
To install SCAP Workbench, run the following command:
yum install -y scap-workbench
- Scan the Localhost for C2S Compliance and Create a Report
- Open SCAP-Workbench
- Applications Menu -> System Tools -> SCAP Workbench
- Choose RHEL7 when prompted to Select content to load:, then click the Load Content button
- From the Profile drop down, select C2S for Red Hat Enterprise Linux 7
- Click the radial button next to Local Machine for the Target
- Click the Scan button at the bottom to start the scan
- Once the scan is complete click Close in the Diagnostics window
- Click the Save Results drop down button and select HTML Report
- Type "scan_results.html" in the name and click Save
- Open SCAP-Workbench