Security Compliance Management known issues

These are the known issues for the Security Compliance Management (SCM) 3.x release.

Scans do not run on Windows Servers

This issue is due to a recently issued Windows Update (April 8, 2025) that is impacting CIS-CAT Pro Assessor.

Please see this KB article for more information about the issue and how to fix it.

Incompatibility with stdlib v9.0 and v9.1

Puppet Security Compliance Management is not compatible with stdlib versions 9.0 and 9.1.

Reports export null data when custom profile filter is applied

Exported reports are empty if a custom profile has been selected on the Profiles quick filter.

Running scan tasks in Puppet Enterprise (PE)

Security Compliance Management uses Puppet Enterprise tasks to run compliance scans on nodes. Although you can see the scan tasks in Puppet Enterprise, we advise against running these tasks from Puppet Enterprise because this practice can have unforeseen effects on both Puppet Enterprise and Security Compliance Management. Instead, run all CIS scans from Security Compliance Management. You can view the scan results in both products.