Security benchmark

Plugin homepage shows you a list of all benchmark applied on your nodes, and their score (summary of many checks are correct). clicking on benchmark leads you to this benchmark interface. You can also apply new benchmark here.

Once you open a benchmark, you arrive home page shows you dashboard of all sections applied with their score and also some progress bar showing you how each section is applied, clicking on a section of a score leads you to a filtered view.

Compliance view allows you to go deeper in each section and understand what is currently applied and its state.

At each level you can switch to show the node details on this section

Some section and checks may allow you to customize some values so that it can be adapted to your case. Parameters tab allows to change them.

clicking on a section show its child subsection and its available parameters. on each section you can define whether the section should be disabled, checked on audit, or applied in enforce. Defining a mode on a parent applies this mode, if possible on all children.

These parameters are defined globally for all nodes, and you can override them on Nodes and Groups like you can do for properties.

Node and groups tabs allows to check the score of nodes and groups, and access their parameters tab.

This tab allows you to customize the name and description.

You can display the documentation section in the right panel at any time. You are free to add any relevant information to this documentation, which can be particularly useful for explaining why a section has been disabled or why a parameter is overridden for a subset of nodes.