Skip to Content
Information
Unsupported content This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

The CCE component

BMC Server Automation supports the SCAP Common Configuration Enumeration (CCE).

CCE is an SCAP nomenclature and dictionary of software security configurations. The SCAP source data stream that BMC Server Automation uses for SCAP compliance scans should include CCE content. The XCCDF result data stream includes CCE IDs.

BMC Server Automation provides drill-down features for researching rule noncompliance on each target server. To implement those features, from the GUI console, users export the XCCDF results to an XML file. The export includes a .xslt file that enables a fully formatted view of the results in a web browser. In the browser-displayed report, users can expand the results for a specific target server, find failed rules, and click a rule to see details about it, including a list of CCE IDs associated with the rule. Using the CCE IDs, the user can research commonly accepted configurations that pass the rule. The CCE IDs in the report are links to http://cce.mitre.org, where users can obtain the most recent CCE lists.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Server Automation 8.3