DISA: Red Hat Enterprise Linux 7

This topic provides information about the hotfix containing Red Hat Enterprise Linux 7 Benchmark Version 3 Release 6 . This template contains implementation for 274 rules that can be installed on  TrueSight Server Automation 21.x onward.

Before you begin

Before you install this hotfix, ensure that you perform the following:

  • Save backup copies of the sensors folders, which are present on all Application Servers in your environment. The sensors folders contain extended object scripts and is located at the following path on an Application Server:
    <Application_Server_installation_directory >/share/sensors

Step 1: Downloading and installing the files

Important

  • On the file server, check the value of the featureDisaRedhat7Template key in the content.version file, located in the %FILESERVER%\BladeLogic\storage\Content directory. Depending on the value, do one of the following:
    • If the value is 22.2.00.000, you don’t need to perform the steps mentioned in this topic, as these templates are deployed as part of the 22.2 installation process.
    • If the value is lower than 22.2.00.000, perform the steps mentioned in this topic to deploy these templates.
  • If existing template is customized, make sure to rename it before importing new one and performing below steps.
  • Ensure to review Template's local and global properties default values to match with organization standards


  1. Download the DISA-RedHat7 and extended_objects packages from the below location.

    You must log in or register to view this page

    Click here to expand checksum related infromation

     Verify the downloaded content by using the following check sums.

    S.No

    File Name

    MD5SUM

    1

    DISA - RedHat 7.zip

    97879b2f98327b4c5175463c415f69f5

    2

    extended_objects.zip

    3b7bc78c60588ae5acb4f7060aaaaf2a

  2. Move the DISA-RedHat7 package to your RCP client server.
  3. Extract the contents from the extended_objects package and move them to a temporary location on all Application Servers.

Step 2: Replacing the extended object scripts on all Application Servers

Ensure that you perform the following steps on all the Application Servers in your environment:

Navigate to the extended objects script files on your Application Server: <Application_Server_installation_directory >/share/sensors/

Step 3: Importing the Compliance Content

  1. Log on the Console.
  2. Right-click on Component Templates and click Import
  3. Select the Import (Version-neutral) option.
  4. Select the updated Disa - RedHat 7 zip package .
    41B0BD1.PNG

  5. The DISA STIG template for RHEL 7 is available in the Disa - RedHat 7 zip package. To import the templates, select the templates as shown in the following screenshot.

    image2022-5-19_16-24-29.png

    Note

    Ensure that you select the Use existing objects and Preserve template group path options before you click Next.

  6. Navigate to the last screen of the wizard and click Finish.
    rhel7-success-import.png

Special issues for rules within the template

The following are the details of the 274 rules provided in the zip package. It contains the following types of rules:

  • Rules that check for compliance and provides remediation - 202
  • Rules that check for compliance but do not provide remediation - 59
  • Rules that do not check for compliance and do not provide remediation - 13

The following are the details of the rules that are divided into parts:

  • Rules not divided into parts - 222
  • Rules Divided into two parts - (21 Rules divided into 2 parts) so (21 * 2) = 42
  • Rules Divided into three parts - (2 Rules divided into 3 parts) so (2 * 3) = 6
  • Rules Divided into four parts - (1 Rule is divided into 4 parts) so (1 * 4) = 4

So, the current rule count as per DISA - Red Hat Enterprise Linux 7 template after running the compliance job is 274 (222 + 42 + 6 + 4)

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*