Getting started with compliance
The following topics introduce you to the concept of compliance management in BMC BladeLogic Server Automation (BSA).
BMC Education Services provide Foundation courses covering the topics discussed in the walkthroughs available in this section. The education classes discuss when and why to make use of various features as well as the “how-to”. If you are interested in looking deeper into these topics, we recommend that you check out the Server Automation education offerings at BMC Server Automation Training.
This section includes the following topics:
|Topic||What is it about?|
|This topic introduces you to the concept of compliance in BSA.|
|Walkthrough: Restricting permissions for a Compliance officer||This topic walks you through the process of setting up a Compliance officer, who is in charge of performing compliance analyses, and limiting permissions so that this user cannot perform other types of actions in BSA.|
|Walkthrough: Loading compliance content||This topic walks you through the process of loading compliance content. Compliance Content libraries contain rule sets to automatically analyze the compliance of servers with regulatory standards and best-practice policies, including HIPAA, DISA STIG, SOX, PCI, and CIS.|
|Walkthrough: Creating a compliance template||This topic walks you through the process of creating a simple compliance template using BSA.|
|Walkthrough: Compliance audit based on a policy||This topic walks you through the process of performing a compliance audit based on a policy.|
|Walkthrough: Reviewing the results of a compliance check||This topic walks you through the process of examining the results of a compliance check and then exporting those results into a report.|
|Walkthrough: Remediating a compliance failure||This topic walks you through the process of remediating a compliance failure, that is, correcting deficiencies that were discovered on a server by a Compliance Job.|
|Walkthrough: Creating exceptions for compliance rules||This topic walks you through the process of using Compliance Job results to create an exception for a compliance rule and then running the Compliance Job again to see how the results show the exception.|
|Walkthrough: Creating remediation objects for a compliance template||This topic walks you through the process of using BSA to create a remediation object that can be deployed to servers that fail a Compliance Job. Deploying the remediation object can make the failed server compliant.|
To examine the process of using the BladeLogic Portal to run a Compliance operations that checks whether servers adhere to payment card industry (PCI) standards, see Example of checking servers for PCI compliance in the BMC Bladelogic Portal online technical documentation.