CIS CAT Assessor scan
Description
The playbook copies the CIS CAT Assessor zip file to the target, installs it, creates a report folder, runs the assessor to generate a JSON report, fetches the most recent JSON report, cleans up old reports, and uploads the report to Kibana.
Works on both Windows and Linux servers.
Credentials
- sys_ansible_windows or sys_ansible_local
Input
| Variable | Description |
|---|---|
target |
FQDN name of the server or name of the server group to scan |
latest |
Version of the CIS CAT Assessor software |
benchmark_windows_2016 |
Name of the benchmark file to use for Windows 2016 |
benchmark_windows_2019 |
Name of the benchmark file to use for Windows 2019 |
benchmark_windows_2022 |
Name of the benchmark file to use for Windows 2022 |
benchmark_rhel8 |
Name of the benchmark file to use for RHEL 8 |
benchmark_rhel9 |
Name of the benchmark file to use for RHEL 9 |
Output
Sends json data to Elastic