Reviewing properties in the Server built-in property class
Before running a Compliance Job for the first time based on any of the Compliance Content component templates, ensure that the values for the relevant server properties are correct within the property class instances created for each of the relevant local servers. If local values differ from the default values, tailor these property values to the unique needs of your local system.
The following sections list the properties in the Server built-in property class for each policy type:
For more information about setting property values and creating or modifying property class instances, see Working-with-properties.
HIPAA properties in the Server built-in property class
The following HIPAA properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.
Property | Description | Default value |
|---|---|---|
CACHE_HRS | Frequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs | 24 |
DOMAIN | Type of Windows target server, whether Domain Controller (value of DC) or Member Server (the default, with a value of MS or any value that is not DC) | a blank value |
EXCLUDED_DIR | Directory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas. | \-1 |
MAX_DISK_PERCENTAGE | Maximum disk percentage of the temporary directory | 95 |
NOT_REVIEWED | The checks not performed by the tool need manual review. | TRUE |
POSTGRES_GROUP_ID | Group ID for the postgres user on SuSE Linux | 26 |
POSTGRES_USER_ID | User ID for the postgres user on SuSE Linux | 26 |
RSCD_DIR | RSCD Agent Installation Directory |
|
SQUID_GROUP_ID | Group ID for the squid user | 23 |
SQUID_USER_ID | User ID for the squid user | 31 |
STAGING_DIR | Path to the staging directory used by TrueSight Server Automation jobs. | /var/tmp/stage |
DISA properties in the Server built-in property class
The following DISA properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.
Property | Description | Default value |
|---|---|---|
AIX_SSH_CONFIG_HOME | Path to the configuration home directory on AIX UNIX | /etc/ssh |
BSA_CONTENT_EXEMPT | Accounts that are exempt from the inactive accounts list | Administrator,Guest |
BSA_CONTENT_IPV | TrueSight Server Automationcontent protocols | IPV4 |
CACHE_HRS | Frequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs. | 24 |
DISA Properties | The name and path of the default instance of the DISA STIG Properties class | DISA STIG Properties/Default |
DISA_SYSACCT | A reference to the property that lists UNIX system accounts for DISA in the DISA STIG Properties class | ??DISA Properties.Unix System Accounts?? |
DOMAIN | Type of Windows target server, whether Domain Controller (value of DC) or Member Server (the default, with a value of MS or any value that is not DC) | a blank value |
EXCLUDED_DIR | Directory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas. | \-1 |
HPUX_SSH_CONFIG_HOME | Path to the configuration home directory on HP UNIX | /opt/ssh/etc |
IP_ADDRESS | IP Address |
|
LINUX_SSH_CONFIG_HOME | Path to the configuration home directory on Linux | /etc/ssh |
MAX_DISK_PERCENTAGE | Maximum disk percentage of the temporary directory | 95 |
MCAFEE_FRAMEWORK | McAfee Framework Service directory | /C/Program Files/McAfee/Common Framework |
MISSION_CRITICAL | Packages that are mission critical for the system and must be installed. |
|
NOT_REVIEWED | The checks not performed by the tool need manual review. | TRUE |
RSCD_DIR | RSCD Agent Installation Directory |
|
SOLARIS_SSH | Path to the configuration home directory on Solaris UNIX | /etc/ssh |
STAGING_DIR | Path to the staging directory used by TrueSight Server Automation jobs. | /var/tmp/stage |
SYSTEMDRIVE | The drive upon which the system folder was placed (for Windows) | /C |
SYSTEMROOT | Windows home directory |
|
WINDIR | Value of WinDir Environment Variable (Microsoft Windows only) |
|
CIS properties in the Server built-in property class
The following CIS properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.
Property | Description | Default value |
|---|---|---|
BSA_CONTENT_DEFAULT_MTA | Default MTA | Postfix |
BSA_CONTENT_IPV_PROTOCOL | TrueSight Server Automation content protocols | IPV4 |
CACHE_HRS | Frequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs. | 24 |
CIS Properties | The name and path of the default instance of the CIS Properties class | CIS Properties/ or CIS Properties/ |
CIS AIX Properties | The name and path of the default instance of the CIS AIX Properties class | CIS AIX Properties/ |
DOMAIN | Type of Windows target server, whether Domain Controller (value of DC) or Member Server (a blank value, the default) | a blank value |
EXCLUDED_DIR | Directory to exclude. The value for this property can be a directory or multiple directories separated by comma. | \-1 |
MAX_DISK_PERCENTAGE | Maximum disk percentage of target that an EO can use. | 95 |
MISSION_CRITICAL_PACKAGES | Packages that are mission critical for the system and must be installed. |
|
NOT_REVIEWED | The checks not performed by the tool need manual review. | TRUE |
NTP_SERVER | NTP server IP or hostname |
|
RSCD_DIR | RSCD Agent Installation Directory |
|
STAGING_DIR | Path to the staging directory used by TrueSight Server Automation jobs. | /var/tmp/stage |
SYSTEMDRIVE | System Drive Directory | /C |
WINDIR | Value of WinDir Environment Variable (Microsoft Windows only) | * |
PCI properties in the Server built-in property class
The following PCI properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.
Property | Description | Default value |
|---|---|---|
AIX_SSH_CONFIG_HOME | Path to the configuration home directory on AIX UNIX | /etc/ssh |
BSA_CONTENT_DEFAULT_MTA | Default MTA | Postfix |
BSA_CONTENT_IPV_PROTOCOL | TrueSight Server Automation content protocols | IPV4 |
CACHE_HRS | Frequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs. | 24 |
DOMAIN | Type of Windows target server, whether Domain Controller (value of DC) or Member Server (the default, with a value of MS or any value that is not DC) | a blank value |
EXCLUDED_DIR | Directory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas. | \-1 |
HPUX_SSH_CONFIG_HOME | Path to the configuration home directory on HP UNIX | /opt/ssh/etc |
IS_SSLF | Whether the server is configured with the SSLF level of security, with a value of either true or false | FALSE |
LINUX_SSH_CONFIG_HOME | Path to the configuration home directory on Linux | /etc/ssh |
MAX_DISK_PERCENTAGE | Maximum disk percentage of the temporary directory | 95 |
MISSION_CRITICAL_PACKAGES | Packages that are mission critical for the system and must be installed. |
|
NOT_REVIEWED | The checks not performed by the tool need manual review. | TRUE |
NTP_SERVER | NTP server IP or hostname |
|
PCI Properties | The name and path of the default instance of the PCI Properties class | PCI Properties/Default |
POSTGRES_GROUP_ID | Group ID for the user postgres |
|
POSTGRES_USER_ID | User ID for the user postgres |
|
RSCD_DIR | RSCD Agent Installation Directory |
|
SOLARIS_SSH_CONFIG_HOME | Path to the configuration home directory on Solaris UNIX | /etc/ssh |
SQUID_GROUP_ID | Group ID for the user squid |
|
SQUID_USER_ID | User ID for the user squid |
|
STAGING_DIR | Path to the staging directory on the target server, used by TrueSight Server Automation jobs. | /var/tmp/stage |
WINDIR | Value of WinDir environment variable (Windows only) |
|
SOX properties in the Server built-in property class
The following SOX properties are included in the Server built-in property class. Ensure that property values are correct within the property class instances created for each of the relevant local servers.
Property | Description | Default value |
|---|---|---|
AIX_SSH_CONFIG_HOME | Path to the configuration home directory on AIX UNIX | /etc/ssh |
CACHE_HRS | Frequency (in hours) at which to refresh the target server cache that contains the target data used during the execution of Compliance Jobs. | 24 |
EXCLUDED_DIR | Directory path to be excluded from searches during Compliance Jobs. Separate multiple directories with commas. | \-1 |
HPUX_SSH_CONFIG_HOME | Path to the configuration home directory on HP UNIX | /opt/ssh/etc |
LINUX_SSH_CONFIG_HOME | Path to the configuration home directory on Linux | /etc/ssh |
MAX_DISK_PERCENTAGE | Maximum disk percentage of the temporary directory | 95 |
NOT_REVIEWED | The checks not performed by the tool need manual review. | TRUE |
POSTGRES_GROUP_ID | Group ID for the postgres user on SuSE Linux | 26 |
POSTGRES_USER_ID | User ID for the postgres user on SuSE Linux | 26 |
RSCD_DIR | RSCD Agent Installation Directory |
|
SOLARIS_SSH_CONFIG_HOME | Path to the configuration home directory on Solaris UNIX | /etc/ssh |
SOX Properties | The name and path of the default instance of the SOX Properties class | Class://SystemObject/SOX Properties/Default |
SOX_SYSACCTS | A reference to the property that lists UNIX system accounts for SOX in the SOX Properties class | ??SOX Properties.SOX System Accounts?? |
SQUID_GROUP_ID | Group ID for the squid user | 23 |
SQUID_USER_ID | User ID for the squid user | 31 |
STAGING_DIR | Path to the staging directory used by TrueSight Server Automation jobs. | /var/tmp/stage |
WINDIR | Value of WinDir Environment Variable (Microsoft Windows only) |
|
Where to go from here