When the system is installed, a security profile (PCI-DSS, CIS Equivalent, and DISA-STIG) is selected, and the system is automatically configured to meet that security profile. To ensure that the system continues to operate in accordance with security profiles, the MCMU provides the means to run security benchmarks and access to the benchmark reports. You can administer the benchmarks using the MCMU BUI and CLI.
Running security benchmarks provides these benefits:
Enables you to evaluate and assess the current security state of the database and application VMs.
The security compliance tests support PCI-DSS, CIS Equivalent standards (default), and DISA-STIG based on the security level configured during the installation.
You can also change the password policy for a specific security profile. See Change the Password Policy.
The security compliance tests run automatically when the system is booted, and can be run on-demand or at scheduled intervals.
Only available to MCMU primary admins, compliance scores and reports are easily accessed from the MCMU BUI.
The compliance reports provide remediation recommendations.