Page 1 of 1

Running Openscap scans

Posted: 2019/10/26 23:31:57
by droidus
I am trying to run openscap scans. I tried the following:

Code: Select all

sudo oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_stig-rhel7-disa --report /tmp/report.html /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml
and

Code: Select all

sudo oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_ospp --report /tmp/report.html /usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml
But they all return with a status of "notapplicable".
How can I run these?

Re: Running Openscap scans

Posted: 2019/12/09 18:20:00
by teknohippie
I find myself facing this same issue.
Has anyone else encountered this or discovered a solution?

Re: Running Openscap scans

Posted: 2019/12/12 14:55:49
by FtEustis
I'm having the same issue, and would love to figure it out. So far I've learned it has something to do with CPE, and how OSCAP is looking for RHEL 7 while running the DISA content. Still searching.