Table of Contents

• Title and Copyright Information
• Using This Documentation
  • Product Documentation Library
  • Feedback
• 1 Reporting Compliance to Security Standards
  • What's New in Compliance in Oracle Solaris 11.4
  • About Compliance in Oracle Solaris
  • Security Benchmarks and Oracle Solaris
    • Solaris Security Policy Benchmark
    • PCI DSS Security Policy Benchmark
    • CIS Benchmark for Oracle Solaris
    • Tailorings From Benchmarks
  • Enterprise Health Check Policy Benchmark
  • compliance Command and Package
    • Rights to Run Compliance Assessments and Reports
    • compliance Package
  • Compliance Reports and Guides
    • Assessment Report Formats
    • Oracle Solaris Compliance Guides
    • New Guides for New Benchmarks
  • Administering Compliance Assessments and Reports
    • Listing Compliance Information and Locating Assessments and Reports
    • Running Assessments and Reports
      • How to Run Assessments and Reports Locally
  • Creating Tailorings From Compliance Benchmarks
    • Editing Compliance Tailorings
    • How to Create a Tailoring From a Compliance Benchmark
    • How to Update Tailorings Based on Previous Benchmark Versions
    • How to Export a Tailoring
    • How to Create a Package Manifest for a Tailoring
    • Selecting Alternate Values for Variables in Compliance Rules
    • How to Select a Non-Default Value for a Rule in a Tailoring
  • Running Assessments at Regular Intervals
    • How to Schedule a Regular Assessment of a System Using Its Default Policy
    • How to Return to the Default Schedule for Running Assessments
• 2 Centrally Managing Compliance Assessments
  • About Running and Storing Compliance Assessments Remotely
  • About Remote Assessment Features
    • About Running Assessments Remotely
    • About Sending Assessments to a Common Store
  • Configuring Administrators to Run Remote Compliance Commands
    • How to Configure an LDAP User to Administer Remote Compliance
    • How to Configure a Local User to Administer Remote Compliance
  • Tagging Assessments With Metadata
  • Using a Common Store for Compliance Assessments
    • How to Send Assessments Immediately to a Common Store
    • How to Copy Assessments to a Common Store
  • Running Remote Assessments on One or More Systems
    • Running One Remote Assessment
    • Running Multiple Remote Assessments
      • How to Create a Roster for Multiple Remote Assessments
      • How to Run Asynchronous Remote Assessments
  • Setting Policy and Assessment Options
  • Using Metadata to Manage Assessments
• 3 Administering Compliance to Critical Security Updates
  • Administering CVE Updates in Oracle Solaris
    • Monitoring CVE Status in Oracle Solaris
    • Locating the Packages That Have CVE Updates in Oracle Solaris
    • Installing the CPU Package
    • Managing CVE Updates From the Command Line
• A Compliance Reference
  • Compliance Utilities
  • Compliance Standards
• Glossary
• Index