**The Live Network connector(LNc) is deprecated and replaced with the Marketplace Connector(MpC). MpC can be used to optionally obtain and latest content for NA & SA. More details are available on MpC page.**
**This content can be imported into Server Automation product only through Marketplace Connector(MpC).**
Security and Compliance
IT organizations are increasingly required to cut costs, while still maintaining a secure and compliant infrastructure.
The Security & Compliance Service for Server Automation is a subscription service that delivers security vulnerability policies and up to date compliance policies to immediately identify issues in your environment. The policies include built-in remediation so you can swiftly fix security or compliance issues without expending a lot of resources.
The Security & Compliance Service for Server Automation provides a one-of-a-kind security service that delivers server based security vulnerabilities. Unlike traditional alerts that are typically delivered via email and therefore very difficult and time consuming to act on, security alerts are delivered as actionable audit policies that integrate seamlessly into Server Automation and allow customers to quickly identify all vulnerable servers in their IT environment, significantly reducing the vulnerability window.
The Security & Compliance Service for Server Automation provides several policies to assist organizations with managing compliance.
There are two types of policies available - Compliance Library Policies and Regulatory Policies. The Compliance Library Policies include an array of user-customizable checks to audit and remediate commonly-used objects on platforms, such as Local Security Settings on Windows or RPMs on Linux. Regulatory Policies provide pre-defined values for audit and remediation according to guidelines such as PCI, SOX, or CIS.
Download latest Marketplace Connector (MpC) here.
**Security & Compliance Content availability with Python 2 and 3 Compatibility for Server Automation **
As Python 2 has approached its end of life, Server Automation Security & Compliance Content written in Python 2 must be updated to make it Python 2 and Python 3 compatible to support both existing and future versions of Server Automation. The updated content is been published in a phased manner and it is a prerequisite to enable Python 2 & 3 compatibility on your Server Automation before importing the newer version of content. To enable the python 2 & 3 compatibility on your Server Automation cores/satellites/agents you need to follow instructions provided as part of the Python 2 and 3 Compatibility Announcement made to the SA community.
The Python 2 & 3 compatible Windows Compliance Check Library and Unix Compliance Check Library are made available on a new stream “cc_library_py3”. The old stream "cc_library" is obsolete and no more updates are made available on that stream. It is a must to configure the Market Place Connector (mpc) with the new stream "cc_library_py3". For more information on new or updated compliance content, please see Compliance Content Release Notes published with every release of the content.
Suggested for you are based on app category, product compatibility, popularity, rating and newness. Some apps may not show based on entitlements. Learn more about entitlements.
Vulnerability Service Release Notes - 2023
Vulnerability Content for suse15
SHA256 Checksum
7773b7ecaa93c37bb532479d58eda9da4efd4a8e227c62d82d96a598001a63f3 ton_vc_suse15-313-20230123.zip
Vulnerability Content for RHEL7
SHA256 Checksum
cb34a65aaac5493111c375fdbf08126eb92ce4d3f2b7a59718ca6a824ddaee06 ton_vc_rhel7-313-20230123.zip
Vulnerability Content for RHEL8
SHA256 Checksum
fa72e8e8c2e48adf52172b9a1d500f1128d0ba66e09130ba03873d6c2f59edb8 ton_vc_rhel8-313-20230123.zip
Vulnerability Content for RHEL9
SHA256 Checksum
3b998dd8f110c53f107266abc278efde2258128694b2e9f3c468580b4de0ef25 ton_vc_rhel9-313-20230123.zip
Vulnerability Content Release Notes - latest
Vulnerability Content for SUSE12
SHA256 Checksum
794cf3b19f24d29879f29ca6d11750dbb404b164ea914e45a9145fee218269cd ton_vc_suse12-313-20230123.zip
Vulnerability Content for RHEL6
SHA256 Checksum
a602baf81fb79d8a7680db5e2e46ee8b0477b27a7e1715ebd81201c1f612e925 ton_vc_rhel6-313-20221220.zip
Vulnerability Service Release Notes - 2022
CIS Compliance Content for oel
sa_cis_oel7-2022.04-466.zip adb7b8c7a81547c8c204ae605afe1674d5148180220c14712fa258437a806252
sa_cis_oel7-2022.04-466.zip 149d60859e8779655c7c9905f011c984c46928f2e1603fd33e0d921c57119b80
sa_cis_oel8-2022.04-466.zip 6e58a3f976744e4425f8985d956bbdbcc8f2dc7ace122f497cdf7374be1b477e
sa_cis_oel9-2022.09-486.zip e06dfb723c9a21bbbb9c5deb773270ecd18c58d274fbf8d50254795071006997
Updated with CIS Compliance Benchmark for Redhat Enterprise Linux Server 6 v3.0.0
Updated with CIS Compliance Benchmark for Redhat Enterprise Linux Server 7 v3.0.1
Updated with CIS Red Hat Enterprise Linux 8 Benchmark V2.0.0
Updated with CIS Red Hat Enterprise Linux 9 Benchmark vBeta
SHA256 Checksum:
sa_cis_rhel9-2022.09-486.zip 874b0a1b018a2541bebb21babd3dcf3d0c12a0c65283e86b819ec43a019c096f
sa_cis_rhel8-2022.07-481.zip 2c4fdfa98ca51652e8bd49101a85e10f1365779e3585c3e002281dc03eef6f72
sa_cis_rhel7-2022.04-466.zip d1c97cbc91d1f1a445e7dda5d9fe1ec407026d8ee6fce4bbb41c1aa984549df0
sa_cis_rhel6-2022.04-466.zip 651b4dd847e4a61753c0233a6762d97dea9188c9f942d379c93d843c4c514c54
Release Notes for Compliance Service for Server Automation for 2022
Compliance Service Release Notes - latest