Page 1 of 1

[SOLVED] OSCAP scan using RHEL STIG

Posted: 2021/05/30 06:26:31
by eng3
I'm trying to run an oscap scan. I'd like to use the RHEL DISA STIG but I get not applicable for all of them.

I suspect this should be possible by modifying certain files but not sure how.

I'd appreciate any help in this area.

Re: OSCAP scan using RHEL STIG

Posted: 2021/05/30 16:59:10
by eng3
ok, after some trial and error, I did the following:

Code: Select all

sed -i 's/cpe.rhel:def:8/cpe:centos:def:8'g /usr/share/openscap/cpe/*
sed -i 's/cpe.rhel:def:8/cpe:centos:tst:8'g /usr/share/openscap/cpe/*
sed -i 's/redhat:enterprise_linux:8/centos:centos:8'g /usr/share/openscap/cpe/*
sed -i 's/redhat:enterprise_linux:8/centos:centos:8'g /usr/share/xml/scap/ssg/content/*

Re: OSCAP scan using RHEL STIG

Posted: 2021/05/31 00:31:26
by scottro
Thanks for coming back and letting us know how you got it working. I'll mark it solved for others who come upon it while searching.