For more details about Center for Internet Security (CIS) please refer to this document.
Instruction steps
Install the UA client
sudo apt updatesudo apt install ubuntu-advantage-toolsSet up the Ubuntu Security Guide
sudo ua enable usgsudo apt install usgCheck SCAP Content Overview (Security Content Automation Protocol)
sudo oscap info /usr/share/ubuntu-scap-security-guides/1/benchmarks/ssg-ubuntu2204-ds.xmlAuditing an Ubuntu System for DISA-STIG compliance
sudo usg audit cis_level2_serverThe report is generated in /var/lib/usg/
Applying the CIS rules to a set of systems
There are 2 ways that apply CIS rules
Method 1: directly using usg command - recommend
sudo usg fix cis_level2_serverMethod 2: using usg to generate script and then run the script
sudo usg generate-fix cis_level2_server --output fix.sh#And the run./fix.shNotes
- CIS Level 2 requires
/tmpfolder to be mounted in a separate partition. Please ensure that that new partition have enough disk space for MetaDefender Core to run.
Was this page helpful?
On This Page
CIS Level 2 GuidelinesInstruction stepsInstall the UA clientSet up the Ubuntu Security GuideCheck SCAP Content Overview (Security Content Automation Protocol)Auditing an Ubuntu System for DISA-STIG complianceApplying the CIS rules to a set of systemsMethod 1: directly using usg command - recommendNotes
