Add your Puppet Enterprise credentials to Security Compliance Management
To allow Security Compliance Management to communicate with Puppet Enterprise, you must add your PE credentials to Security Compliance Management.
Before you begin:
Make sure you have classified the nodes you want to scan in Puppet Enterprise (PE).
Make sure you have classified the nodes you want to scan in Puppet Enterprise (PE).
Adding your Puppet Enterprise credentials authenticates Security Compliance Management with Role Based Access Control (RBAC). Your Puppet Enterprise account requires the following permissions:
| Type | Action | Instance |
|---|---|---|
| Console | View | - |
| Job Orchestrator | Start, stop and view jobs | - |
| Node Groups | View | All |
| Nodes | View node data from PuppetDB | - |
| Tasks | Run Tasks | Task: Permitted on: All nodes |
| Tasks | Run Tasks | Task: Permitted on: All nodes |
| Tasks | Run Tasks | Task: Permitted on: All nodes |
| User Roles | Create | All |
For more information on permissions, see User permissions and user roles.
- In Security Compliance Management — located at
https://<COMPLY-HOSTNAME>/— click Settings. -
Click Puppet Enterprise instance.
- Enter your Puppet Enterprise hostname, username, and password.
- Click Submit.You can refresh the Puppet Enterprise node and fact information by clicking Refresh data.
Results
You now see a list of your classified nodes on the Nodes page.
You now see a list of your classified nodes on the Nodes page.
What to do next
You have completed the Security Compliance Management setup process! You can now start running CIS scans on your nodes. If you're new to Security Compliance Management, try out the beginner's guide.
You have completed the Security Compliance Management setup process! You can now start running CIS scans on your nodes. If you're new to Security Compliance Management, try out the beginner's guide.
