Given the rapidly growing number of security requirements, traditional manual configuration and inspection are no longer sufficient to ensure full compliance. To address this challenge, ACOS implements automated compliance based on Red Hat Enterprise Linux (RHEL) 7 Security Technical Implementation Guide (STIG). The STIG provides machine-readable configuration rules that enable consistent and repeatable enforcement of strict common security standards, reducing human error and ensuring that system configurations remain aligned with best-practice security benchmarks.
ACOS security hardening patches enable rapid and continuous assessment and remediation of your platform, helping meet or even exceed all regulatory requirements. ACOS also standardizes the security profile of controller virtual machines to a security compliance baseline that meets high governance security standards.
The security hardening patches provided for ACOS products are implemented in accordance with the STIG guidelines. However, certain configurations that require manual user intervention are not included, such as modifying the GRUB default user and setting the GRUB password.
