Skip to Content

Ensuring compliant configurations

This topic introduces the tasks you must perform when you use the portal to ensure that server configurations adhere to an organizational standard. For example, many organizations use the Center for Internet Security (CIS) standards to ensure server security. Each task provides links to related documentation.

Success

Tip

Use Ctrl-click to access the documentation cited in the table below so the related topics appear in new tabs. Displaying information in separate tabs makes it easier to keep this high-level procedure visible.

Task

Related documentation

Using BMC Server Automation, establish a standard server configuration. If you do not want to set up you own standard configurations, BMC Server Automation provides predefined content that allows you to perform the necessary configuration on a server so it can be used as a standard for CIS-based security.

Using BMC Server Automation, create a Compliance Job that can monitor compliance and remediate deficiencies. Alternatively, you can use BMS Server Automation to create a component template that can be used to check for compliant configurations.

Using the portal, create a Compliance operation based on the job or template created in the previous step. Use targets already defined for the job or identify new targets.

Execute the Compliance operation.

Examine the results of the Compliance operation and take the following actions:

  • If one or more targets should be excluded from the Compliance operation, define exceptions for those targets.
  • If one or more targets still require additional configuration, run remediation jobs on those targets.

Repeat the initial Compliance operation and check the results of the operation. Optionally, you can examine the history of the operation to determine whether you are achieving a satisfactory level of compliance.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC BladeLogic Portal 1.2