About CIS Policies:
CIS benchmark was created using a consensus review process comprised of subject matter experts. Consensus participants provide perspective from a diverse set of backgrounds including consulting, software development, audit and compliance, security research, operations, government, and legal.
We have created Compliance policies based on CIS benchmarks, which can be imported.
Steps to import CIS policy into netyce database.
(1) Compliance -> (2) Policies -> (3) Import :select the xml file that consists of CIS benchmarks ->(4) OK
Below is a sample snapshot of the imported CIS benchmarks policies
Sample CSV report :
Below is a sample report that is downloaded and formatted.
The above is a sample section of Compliancy policies. Along with management plane, there are policies database for Data plane and Control plane.
The above is derived from the csv report downloaded from NetYCE Compliance. We can observe that some rules are partially compliant across all devices and shows inconsistency in configuration.
Useful links:
CIS benchmarks for Cisco IOS
CIS benchmarks for Juniper
CIS benchamrks for F5
CIS benchamarks for other vendors
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article