• DevSecOps,  SaltStack,  VMWARE

    SaltStack SecOps compliance checks with custom variables

    This blog will cover how we can pass custom values into the SaltStack state that make up the security checks. Such customisation provides the ability to define SaltStack compliance policies with a custom variable value. It essentially supports applying certain checks with required variables using the out-of-the-box CIS benchmarks, e.g. security compliance check “Ensure password expiration is 365 days or less”, which will ensure password expiration is 365 days or less. However, my standard policy accepts password expiration to 180 days. Variables are used to customize policies to the specific organization’s internal policies. Please note that this process is not applicable If you like to create and test custom compliance…