Supported CIS Benchmarks

Security Compliance Management supports the following CIS operating system benchmarks.

Operating system Supported versions
Alma Linux 8
Amazon Linux 2, 2 STIG
Azure Compute Microsoft Windows Server 2019 1.0.0
CentOS 7
Debian Linux 10, 11 (v1.0.0), 11 STIG, 12
Mac OS X 10.15, 11.0, 12
Oracle Linux 7, 8, 9
Red Hat Enterprise Linux (RHEL) 7, 7 STIG, 8, 8 STIG, 9
Rocky Linux 8
SUSE Linux Enterprise Server (SLES) 12, 15
Ubuntu 16.04*, 18.04, 20.04, 20.04 STIG, 20.04 LTS STIG, 22.04
Windows 2012, 2012 R2, 2016, 2016 STIG, 2019, 2019 STIG, 2022, 10 (for stand-alone systems)**, 10 Enterprise, 11 (for stand-alone systems)**, 11 Enterprise
* Ubuntu users:
  • If you use Ubuntu 16.04, you need Curl with Mutual Transport Layer Security (MTLS) support to upgrade Security Compliance Management and run scans.
  • The feature for managing Java runtime packages, manage-java, is no longer supported for Ubuntu 16.04 because the Puppet java module is not available in this environment.
** Microsoft Windows users: Starting with Security Compliance Management 2.8.0, you can apply the CIS Microsoft Windows 10 and 11 Stand-alone Benchmarks to stand-alone systems, which are not connected to a domain.