Hello,
I see that I can generate a report after the fact by using the 'oscap generate report' command with the results xml. Can I generate STIG Viewer-compatible output after the fact, as well?
My use case is to run the ssg benchmark against a RHEL 6 system that has a old version of openscap, then move those results to a system with the current version to do the conversion.
I've also had to do this with a RHEL 7.3 system, in which case I was able to workaround the issues by re-building the newest openscap SRPM against RHEL 7.3, but that's not a very clean solution and results in an unsupported package being installed on the system.
Is there a template somewhere that will allow the 'oscap generate custom' output the equivalent of '--stig-viewer' from a results xml file?
Thanks for any insight!
V/r, James Cassell
Hi,
It currently isn't possible, and we don't have any template there.
But I have found that the --stig-viewer option has been updated and the latest version of the man page says:
--stig-viewer FILE Writes XCCDF results into FILE in a format readable by DISA STIG Viewer. See http://iase.disa.mil/stigs/Pages/stig-viewing-guidance.aspx. This option should be used to generate results for DISA STIG Viewer older than 2.6. To use DISA STIG Viewer 2.6 or newer, use --results instead.
From this, it seems to me it's enough to generate the XCCDF results using '--results results.xml' option and STIG Viewer should be able to consume them. I haven't tried that myself, though.
Regards
Jan Černý Security Technologies | Red Hat, Inc.
----- Original Message -----
From: "James Cassell" fedoraproject@cyberpear.com To: "SCAP Security Guide List" scap-security-guide@lists.fedorahosted.org Sent: Friday, March 22, 2019 9:37:41 PM Subject: Generate '--stig-viewer' results from '--results-arf' output
Hello,
I see that I can generate a report after the fact by using the 'oscap generate report' command with the results xml. Can I generate STIG Viewer-compatible output after the fact, as well?
My use case is to run the ssg benchmark against a RHEL 6 system that has a old version of openscap, then move those results to a system with the current version to do the conversion.
I've also had to do this with a RHEL 7.3 system, in which case I was able to workaround the issues by re-building the newest openscap SRPM against RHEL 7.3, but that's not a very clean solution and results in an unsupported package being installed on the system.
Is there a template somewhere that will allow the 'oscap generate custom' output the equivalent of '--stig-viewer' from a results xml file?
Thanks for any insight!
V/r, James Cassell _______________________________________________ scap-security-guide mailing list -- scap-security-guide@lists.fedorahosted.org To unsubscribe send an email to scap-security-guide-leave@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/scap-security-guide@lists.fedor...
scap-security-guide@lists.fedorahosted.org