CIS-CAT Pro Assessor
The CIS Benchmarks are set of best practices to help organizations securely configure IT systems, software, networks, and cloud infrastructure. The CIS-CAT Pro Assessor by the Center for Internet Security allows you to scan systems against these CIS benchmarks and CIS controls and report on their levels of compliance.
Security Compliance Management (SCM) uses the CIS-CAT Pro Assessor as its scanner tool to assess compliance with CIS Benchmarks. The assessor is installed as an integral part of the SCM setup process. During the SCM configuration, Puppet Enterprise automatically installs the CIS-CAT Pro Assessor on the target nodes you want scanned for compliance. This enables comprehensive security assessments across various operating systems and platforms. The assessor's regular updates and wide benchmark coverage allow you to perform up-to-date compliance scans based on different security profiles.
The CIS-CAT Pro Assessor uses an embedded Java Runtime Environment (JRE) for its operation. This embedded JRE allows the assessor to run independently without relying on the system's installed Java version, ensuring consistency across different environments where SCM is deployed. For more information, please visit the CIS-CAT Pro Assessor page from the Center for Internet Security.
CIS-CAT Pro Assessor version information
Each release of Security Compliance Management includes the latest version of the CIS-CAT Pro Assessor.
| SCM version | CIS-CAT Pro Assessor version | Embedded Java version |
|---|---|---|
| Security Compliance Management 3.4.0 | CIS-CAT Pro Assessor v4.52.0 | Amazon Corretto v8.442.06.1 |
| Security Compliance Management 3.3.0 | CIS-CAT Pro Assessor v4.47.0 | Amazon Corretto v8.422.05.1 |
| Security Compliance Management 3.2.0 | CIS-CAT Pro Assessor v4.43.0 | OpenJDK 8u362-b09 |
| Security Compliance Management 3.1.0 | CIS-CAT Pro Assessor v4.42.0 | OpenJDK 8u362-b09 |
| Security Compliance Management 3.0.0 | CIS-CAT Pro Assessor v4.41.0 | OpenJDK 8u362-b09 |
