Versions Compared

Old Version 5

changes.mady.by.user Allan Cornwell

Saved on

compared with

New Version 6

changes.mady.by.user Allan Cornwell

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Product Name

CIS-CAT Pro Assessor v4

Product Version

all

Date

Overview

This guide outlines the process of creating a Configuration XML file to store assessment details of multiple local or remote endpoints in CIS-CAT Pro Assessor. An XML file allows the user to configure Benchmarks, Profile levels, interactive values, user properties, and reporting options all in a single file.

Requirements

Info

While it is possible to create a Configuration XML file from scratch using a text editor, we recommend populating the initial values using the Assessor GUI (Windows only). The resulting XML file can then be edited further, and used for both GUI and CLI assessments on all supported platforms.

Walkthrough

1
Start Assessor by launching

Launch the Assessor-GUI.exe as Administrator:

Image Modified
2

Select "Advanced" -> "Add Remote or Local Target System":

Image Modified
3

Enter the connection details for the first remote host, and select the desired Benchmark & Profile level:

Image Modified
Info

For information on the required protocols & ports for remote assessments, please refer to the Configuration Guide.

4

On the next screen,

you can then

select the "Add" button in the top right to include additional systems

in this scan using the same procedure as shown in the previous step

.

The below example

screenshot

shows 3 targets, one Windows Server 2019 host and two Linux systems

(Ubuntu & Debian)

, each with their own credentials, Benchmarks and Profile levels:

Image Modified
5

Once all

entries have been made to

intended systems are included in the “Target Systems” list, move to the next “Assessment options” screen

, where you can select

. Select the report formats

, along with

and a CIS-CAT Pro Dashboard upload URL (

if applicable

optional).

You can then

Use the “Save configuration file“ checkbox near the bottom to save these systems and preferences as a Configuration XML

with the “Save configuration file“ checkbox near the bottom

; the

desired

path & filename

can be supplied

is specified with the “Save As” button:

Image Modified

You can also optionally encrypt this configuration file with a password. This helps protect the embedded connection credentials from being viewable in plaintext.

Note

If a Configuration XML is encrypted, it is no longer possible to make changes to the file using a text editor. You can however re-import the encrypted XML into the Assessor GUI, supply the chosen password and enact modifications at a later time.

6
(todo)

To load the resulting Configuration XML, use one of the following two methods:

  • Using the Assessor GUI, choose “Advanced” → “Load a configuration or sessions file”

    Image Added

  • Using the Assessor CLI, invoke the file with the -cfg parameter:
    Assessor-CLI.bat -cfg config\my-configuration-file.xml

Keywords; Configuration XML Assessor GUI CLI

Content by Label

Filter by label (Content by label)
showLabelsfalse
showSpacefalse
cqllabel = "sbp_fer"

Copyright © 2023

Center for Internet Security®

Privacy Policy

Page Properties
hiddentrue

Action

Name(s)

Date

Linked ticket

Created by

Reviewed by

Approved by

Remove by