Skip to content

Latest commit

 

History

History
91 lines (77 loc) · 2.93 KB

supported_configuration.md

File metadata and controls

91 lines (77 loc) · 2.93 KB
Raw

Supported Configurations

Report to Chef Automate via Chef Server

when fetching profiles from Chef Automate via Chef Server

# audit cookbook attributes:
['audit']['reporter'] = 'chef-server-automate'
['audit']['fetcher'] = 'chef-server'
['audit']['profiles']['linux-baseline'] = { 'compliance': 'linux-baseline', 'version': '2.2.2' }
 
# chef-server.rb (Chef Server configuration):
data_collector['root_url'] = 'https://automate-server.test/data-collector/v0/'
profiles['root_url'] = 'https://automate-server.test'
 
# delivery.rb (configuration only for Automate v1):
compliance_profiles["enable"] = true

when fetching URL and GIT profiles

# audit cookbook attributes:
['audit']['reporter'] = 'chef-server-automate'
['audit']['fetcher'] = 'chef-automate'
['audit']['profiles']['linux-baseline'] = { 'url': 'https://github.com/dev-sec/linux-baseline/archive/2.0.1.tar.gz' }
['audit']['profiles']['ssl-benchmark'] = { 'git': 'https://github.com/dev-sec/ssl-benchmark.git' }
 
# chef-server.rb (Chef Server configuration):
data_collector['root_url'] = 'https://automate-server.test/data-collector/v0/'
profiles['root_url'] = 'https://automate-server.test'
 
# delivery.rb (configuration only for Automate v1):
compliance_profiles["enable"] = true
Report directly to Chef Automate

when fetching profiles from Chef Automate

# audit cookbook attributes:
['audit']['reporter'] = 'chef-automate'
['audit']['fetcher'] = 'chef-automate'
['audit']['profiles']['linux-baseline'] = { 'compliance': 'linux-baseline' }
 
# client.rb (Chef Client configuration):
data_collector['server_url'] = 'https://automate-server.test/data-collector/v0/'
data_collector['token'] = '...'

when fetching URL and GIT profiles

# audit cookbook attributes:
['audit']['reporter'] = 'chef-automate'
['audit']['fetcher'] = 'chef-automate'
['audit']['profiles']['linux-baseline'] = { 'url': 'https://github.com/dev-sec/linux-baseline/archive/2.0.1.tar.gz' }
['audit']['profiles']['ssl-benchmark'] = { 'git': 'https://github.com/dev-sec/ssl-benchmark.git' }
 
# client.rb (Chef Client configuration):
data_collector['server_url'] = 'https://automate-server.test/data-collector/v0/'
data_collector['token'] = '...'

when fetching local path and Chef Supermarket profiles

# audit cookbook attributes:
['audit']['reporter'] = 'chef-automate'
['audit']['fetcher'] = 'chef-automate'
['audit']['profiles']['web-iis'] = { 'path': 'E:/profiles/web-iis' }
['audit']['profiles']['ssh-baseline'] = { 'supermarket': 'dev-sec/ssh-baseline' }
 
# client.rb (Chef Client configuration):
data_collector['server_url'] = 'https://automate-server.test/data-collector/v0/'
data_collector['token'] = '...'