Skip to Content

SCAP functionality updates for SP2

BMC Server Automation version 8.2 SP2 contains the following SCAP functionality updates.

Support for SCAP results in ARF and ASR formats

BMC Server Automation version 8.2 SP2 supports reports in ARF and ASR formats compliant with the ARF/ASR specification version 0.41.

From the BMC Server Automation Console, you can export the SCAP results to an ARF or ASR file, storing it in the location of your choice. The exported results file is an ARF or ASR file compliant with the ARF/ASR specification version 0.41.

To export an ARF/ASR results file, perform the following steps:

  1. Right-click the SCAP Compliance Job name in the Jobs folder and select Show Results.
     One or more job run instances appear in the Content View.
  2. Expand the job run instance of interest.
     Two objects appear under the job run instance: the Rules View and the Server View.
  3. Right-click Server View (or the individual targets in this view) and select Export Other SCAP Formats.
  4. In the Export ARF/ASR Results dialog box:
    1. From the scroll bar, select Servers (if you want to store the exported file on a remote server) or Local Computer (to store the exported file on a local drive).
    2. Select a drive on that server.
    3. To select a folder on the drive, double-click the drive name and continue to double-click folder names to expand to the desired folder.
    4. (ARF only) Click the Options button.
       For the Split files checkbox:
      • To export results for each server to a separate file, select the Split files checkbox. Note that the checkbox is selected by default.
      • To export results for all servers into the same file, clear the checkbox. Note that the checkbox is selected by default.
    5. Type a file name.
      • If the Split files checkbox is selected, the exported file names are in this format: <yourFileNameValue_serverName>
      • If the Split files checkbox is cleared, the exported file name is in this format: <yourFileNameValue>
  5. To start the export, click Save.

Update to the OVAL Definition Interpreter (ovaldi) interface

The Ovaldi interface has been upgraded from version 5.9.1 to version 5.10.1.2. Ovaldi version 5.10.1.2 supports the following probes:

Independent Probes

  • EnvironmentVariableProbe
  • FamilyProbe
  • FileHash58Probe
  • FileHashProbe
  • FileMd5Probe
  • LDAPProbe
  • TextFileContent54Probe
  • TextFileContentProbe
  • VariableProbe
  • XmlFileContentProbe

Linux Probes

  • DPKGInfoProbe
  • IfListenersProbe
  • InetListeningServersProbe
  • PartitionProbe
  • RPMInfoProbe
  • SysctlProbe

Solaris Probes

  • IsainfoProbe
  • Patch54Probe

Unix Probes

  • FileProbe
  • InetdProbe
  • InterfaceProbe
  • PasswordProbe
  • Process58Probe
  • ProcessProbe
  • RunLevelProbe
  • ShadowProbe
  • UnameProbe
  • XinetdProbe

Windows Probes

  • AbsEffectiveRightsProbe
  • AccessTokenProbe
  • ActiveDirectoryProbe
  • AuditEventPolicyProbe
  • AuditEventPolicySubcategoriesProbe
  • DNSCacheProbe
  • FileAuditedPermissions53Probe
  • FileAuditedPermissionsProbe
  • FileEffectiveRights53Probe
  • FileEffectiveRightsProbe
  • FileProbe
  • GroupProbe
  • GroupSidProbe
  • InterfaceProbe
  • LockoutPolicyProbe
  • MetabaseProbe
  • PasswordPolicyProbe
  • PortProbe
  • PrinterEffectiveRightsProbe
  • Process58Probe
  • ProcessProbe
  • RegistryProbe
  • RegKeyAuditedPermissions53Probe
  • RegKeyAuditedPermissionsProbe
  • RegKeyEffectiveRights53Probe
  • RegKeyEffectiveRightsProbe
  • ServiceEffectiveRightsProbe
  • SharedResourceProbe
  • SidProbe
  • SidSidProbe
  • UserProbe
  • UserSid55Probe
  • UserSidProbe
  • VolumeProbe
  • WMI57Probe
  • WMIProbe
  • WUAUpdateSearcherProbe

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Server Automation 8.2