MiniCluster initialization is performed using the MCMU BUI or CLI. During the initialization, the MCMU requires the installer to choose one of these security profiles:
Default Security Profile – Satisfies requirements comparable and equivalent to benchmarks set forth by the Center for Internet Security (CIS) and Security Technical Implementation Guidelines (STIG) assessments.
PCI-DSS Profile – Complies with the Payment Card Industry Data Security Standard (PCI DSS) standard defined by the Payment Card Industry Security Standards Council.
DISA STIG Profile – The Defense Information System Agency - Security Technical Implementation Guidance Standard. This profile builds on the Default Security Profile and introduces an additional 75 security controls, FIPS-140-2 cryptography, and support for setting an eeprom password.
Based on the selected policy, the MCMU configures the global zone and non-global zones with over 250 security controls.
After the initialization, as VMs are created, the MCMU requires the selection of one of the security profiles for each VM. Based on your security requirements, you can have a mix of security profiles on the VMs.