Martin,
I was able to run xccdf and oscan after editing the eap5-xccdf.xml file. I did comment out all '<platform idref="cpe:/a:redhat..' lines (5 lines in total).
java -jar xccdfexec.jar -result bla.xml --report bla.html --profile eap5_full -c eap5-cpe-oval.xml -C eap5-cpe-dictionary.xl -P eap5_full
Did run and asked me a lot's of questions. The same questions as can be found in the JBossEAP5_Guide.html document. Based on my answers it generated a few xml files. But am I mistaken or doesn't xccdfexec cheeck anything?
Oscap did check some things by it self (by inspecting jboss xml files I supose). I run it with the following options:
oscap xccdf eval --results bla.xml --report bla.html --profile eap5-full -cpe eap5-cpe-dictionary.xml eap5-xccdf.xml
It generated the bla.html file and most of the checks were done. Previously I did check the Jboss by hand and I think oscap is not very meticulous. Some checks did get the passed status and I'm sure it should have failed. Any comments on this/
I'm very unexperienced with xccdfexec and oscan and maybe I'm not using these tools correctly.