Important

   

This space contains documentation for TrueSight Server Automation 8.9.03 and the later service packs for 8.9. For earlier releases, see BMC Server Automation 8.9.

Reviewing properties in the Server built-in property class

Before running a Compliance Job for the first time based on any of the Compliance Content component templates, ensure that the values for the relevant server properties are correct within the property class instances created for each of the relevant local servers. If local values differ from the default values, tailor these property values to the unique needs of your local system.

The following sections list the properties in the Server built-in property class for each policy type:

For more information about setting property values and creating or modifying property class instances, see Working with properties.

HIPAA properties in the Server built-in property class

The following HIPAA properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.

PropertyDescriptionDefault value
CACHE_HRSFrequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs24
DOMAINType of Windows target server, whether Domain Controller (value of DC) or Member Server (the default, with a value of MS or any value that is not DC)a blank value
EXCLUDED_DIRDirectory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas.\-1
MAX_DISK_PERCENTAGEMaximum disk percentage of the temporary directory95
NOT_REVIEWEDThe checks not performed by the tool need manual review.TRUE
POSTGRES_GROUP_IDGroup ID for the postgres user on SuSE Linux26
POSTGRES_USER_IDUser ID for the postgres user on SuSE Linux26
RSCD_DIRRSCD Agent Installation Directory 
SQUID_GROUP_IDGroup ID for the squid user23
SQUID_USER_IDUser ID for the squid user31
STAGING_DIRPath to the staging directory used by TrueSight Server Automation jobs./var/tmp/stage


Back to top

DISA properties in the Server built-in property class

The following DISA properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.

PropertyDescriptionDefault value
AIX_SSH_CONFIG_HOMEPath to the configuration home directory on AIX UNIX/etc/ssh

BSA_CONTENT_EXEMPT
_ACCOUNTS

Accounts that are exempt from the inactive accounts listAdministrator,Guest

BSA_CONTENT_IPV
_PROTOCOL

TrueSight Server Automationcontent protocols

IPV4
CACHE_HRSFrequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs.24
DISA PropertiesThe name and path of the default instance of the DISA STIG Properties classDISA STIG Properties/Default
DISA_SYSACCTA reference to the property that lists UNIX system accounts for DISA in the DISA STIG Properties class??DISA Properties.Unix System Accounts??
DOMAINType of Windows target server, whether Domain Controller (value of DC) or Member Server (the default, with a value of MS or any value that is not DC)a blank value
EXCLUDED_DIRDirectory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas.\-1
HPUX_SSH_CONFIG_HOMEPath to the configuration home directory on HP UNIX/opt/ssh/etc
IP_ADDRESSIP Address 
LINUX_SSH_CONFIG_HOMEPath to the configuration home directory on Linux/etc/ssh
MAX_DISK_PERCENTAGEMaximum disk percentage of the temporary directory95
MCAFEE_FRAMEWORK
_SERVICE_DIR
McAfee Framework Service directory/C/Program Files/McAfee/Common Framework
MISSION_CRITICAL
_PACKAGES
Packages that are mission critical for the system and must be installed. 
NOT_REVIEWEDThe checks not performed by the tool need manual review.TRUE
RSCD_DIRRSCD Agent Installation Directory 
SOLARIS_SSH
_CONFIG_HOME
Path to the configuration home directory on Solaris UNIX/etc/ssh
STAGING_DIRPath to the staging directory used by TrueSight Server Automation jobs./var/tmp/stage
SYSTEMDRIVEThe drive upon which the system folder was placed (for Windows)/C
SYSTEMROOTWindows home directory 
WINDIRValue of WinDir Environment Variable (Microsoft Windows only) 

Notes

The following directories are excluded from compliance-related operations:

  • TrueSight Server Automation installation directory is excluded by default
  • Locations specified in the EXCLUDED_DIR property
  • The following directories are also excluded: /tcb, /dev, /proc, /vol, /xfn, /cdrom, and /mnt
  • The directories of mounted file system devices are also excluded.


Back to top

CIS properties in the Server built-in property class

The following CIS properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.

PropertyDescriptionDefault value

BSA_CONTENT_DEFAULT_MTA

Default MTA

Postfix

BSA_CONTENT_IPV_PROTOCOL

TrueSight Server Automation content protocols

IPV4

CACHE_HRSFrequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs.24
CIS PropertiesThe name and path of the default instance of the CIS Properties class

CIS Properties/
ENTERPRISE_MEMBER_SERVER

or

CIS Properties/
ENTERPRISE_DOMAIN_CONTROLLER
(for Windows)

CIS AIX Properties

The name and path of the default instance of the CIS AIX Properties class

CIS AIX Properties/
HIGH_LEVEL_POLICY

DOMAIN

Type of Windows target server, whether Domain Controller (value of DC) or Member Server (a blank value, the default)

a blank value

EXCLUDED_DIRDirectory to exclude. The value for this property can be a directory or multiple directories separated by comma.\-1
MAX_DISK_PERCENTAGEMaximum disk percentage of target that an EO can use.95
MISSION_CRITICAL_PACKAGESPackages that are mission critical for the system and must be installed. 
NOT_REVIEWEDThe checks not performed by the tool need manual review.TRUE
NTP_SERVERNTP server IP or hostname 
RSCD_DIRRSCD Agent Installation Directory 
STAGING_DIRPath to the staging directory used by TrueSight Server Automation jobs./var/tmp/stage
SYSTEMDRIVESystem Drive Directory/C
WINDIRValue of WinDir Environment Variable (Microsoft Windows only)*

Note

The following directories are excluded from compliance-related operations:

  • TrueSight Server Automation installation directory is excluded by default
  • Locations specified in the EXCLUDED_DIR property
  • The following directories are also excluded: /tcb, /dev, /proc, /vol, /xfn, /cdrom, and /mnt
  • The directories of mounted file system devices are also excluded.

Back to top

PCI properties in the Server built-in property class

The following PCI properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.

PropertyDescriptionDefault value
AIX_SSH_CONFIG_HOMEPath to the configuration home directory on AIX UNIX/etc/ssh
BSA_CONTENT_DEFAULT_MTADefault MTAPostfix
BSA_CONTENT_IPV_PROTOCOL

TrueSight Server Automation content protocols

IPV4
CACHE_HRSFrequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs.24
DOMAIN

Type of Windows target server, whether Domain Controller (value of DC) or Member Server (the default, with a value of MS or any value that is not DC)

a blank value

EXCLUDED_DIRDirectory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas.\-1
HPUX_SSH_CONFIG_HOMEPath to the configuration home directory on HP UNIX/opt/ssh/etc
IS_SSLFWhether the server is configured with the SSLF level of security, with a value of either true or falseFALSE

LINUX_SSH_CONFIG_HOME

Path to the configuration home directory on Linux

/etc/ssh

MAX_DISK_PERCENTAGEMaximum disk percentage of the temporary directory95
MISSION_CRITICAL_PACKAGESPackages that are mission critical for the system and must be installed. 
NOT_REVIEWEDThe checks not performed by the tool need manual review.TRUE
NTP_SERVERNTP server IP or hostname 
PCI PropertiesThe name and path of the default instance of the PCI Properties classPCI Properties/Default
POSTGRES_GROUP_IDGroup ID for the user postgres 
POSTGRES_USER_IDUser ID for the user postgres 
RSCD_DIRRSCD Agent Installation Directory 
SOLARIS_SSH_CONFIG_HOMEPath to the configuration home directory on Solaris UNIX/etc/ssh
SQUID_GROUP_IDGroup ID for the user squid 
SQUID_USER_IDUser ID for the user squid 
STAGING_DIRPath to the staging directory on the target server, used by TrueSight Server Automation jobs./var/tmp/stage
WINDIRValue of WinDir environment variable (Windows only) 

Note

The following directories are excluded from compliance-related operations:

  • TrueSight Server Automation installation directory is excluded by default
  • Locations specified in the EXCLUDED_DIR property
  • The following directories are also excluded: /tcb, /dev, /proc, /vol, /xfn, /cdrom, and /mnt
  • The directories of mounted file system devices are also excluded.
  • For the Group World Writable Directory, Find Unauthorized World-Writable Files, and Find World-Writable Directory with Sticky Bit Set rules: /var/adm/ras/conslog, /var/tmp, /tmp, /dev/screen, /system/contract/process, /var/mail, /var/preserve, and /var/spool.
  • For the Find Unauthorized SUID & SGID System Executables rule: /proc/, /adm/sw, and /usr/nsh.

Back to top

SOX properties in the Server built-in property class

The following SOX properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.

PropertyDescriptionDefault value
AIX_SSH_CONFIG_HOMEPath to the configuration home directory on AIX UNIX/etc/ssh
CACHE_HRSFrequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs.24
EXCLUDED_DIRDirectory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas.\-1
HPUX_SSH_CONFIG_HOMEPath to the configuration home directory on HP UNIX/opt/ssh/etc
LINUX_SSH_CONFIG_HOMEPath to the configuration home directory on Linux/etc/ssh
MAX_DISK_PERCENTAGEMaximum disk percentage of the temporary directory95
NOT_REVIEWEDThe checks not performed by the tool need manual review.TRUE
POSTGRES_GROUP_IDGroup ID for the postgres user on SuSE Linux26
POSTGRES_USER_IDUser ID for the postgres user on SuSE Linux26
RSCD_DIRRSCD Agent Installation Directory 
SOLARIS_SSH_CONFIG_HOMEPath to the configuration home directory on Solaris UNIX/etc/ssh
SOX PropertiesThe name and path of the default instance of the SOX Properties classClass://SystemObject/SOX Properties/Default
SOX_SYSACCTSA reference to the property that lists UNIX system accounts for SOX in the SOX Properties class??SOX Properties.SOX System Accounts??
SQUID_GROUP_IDGroup ID for the squid user23
SQUID_USER_IDUser ID for the squid user31
STAGING_DIRPath to the staging directory used by TrueSight Server Automation jobs./var/tmp/stage
WINDIRValue of WinDir Environment Variable (Microsoft Windows only) 

Note

The following directories are excluded from compliance-related operations:

  • TrueSight Server Automation installation directory is excluded by default
  • Locations specified in the EXCLUDED_DIR property
  • The following directories are also excluded: /tcb, /dev, /proc, /vol, /xfn, /cdrom, and /mnt
  • The directories of mounted file system devices are also excluded.
  • For the Group World Writable Directory, Find Unauthorized World-Writable Files, and Find World-Writable Directory with Sticky Bit Set rules: /var/adm/ras/conslog, /var/tmp, /tmp, /dev/screen, /system/contract/process, /var/mail, /var/preserve, and /var/spool.
  • For the Find Unauthorized SUID & SGID System Executables rule: /proc/, /adm/sw, and /usr/nsh.

Where to go from here

Modifying out-of-the-box component templates

Was this page helpful? Yes No Submitting... Thank you

Comments