CIS-CAT Pro
CIS-CAT Pro is a tool for automating CIS Benchmark testing and reporting.
Asset Types Fetched
- Devices, Databases
Before You Begin
Ports
- Microsoft SQL Server discovery port - 1433.
- The specific port for the supplied named instance, if relevant.
Authentication Method
- User Name/Password
Permissions
The value supplied in User Name must have Read access to SQL tables.
- The best practice is to create a dedicated SQL local user for Axonius usage. For details, see Creating a Local Read-Only User for Microsoft SQL Server.
- If you are using a domain user, specify the domain and the user name in the following format: domain\username.
Supported From Version
Supported from Axonius version 4.5
Connecting the Adapter in Axonius
To connect the adapter in Axonius, provide the following parameters:
Required Parameters
- Server Host or IP Address - The DNS / IP Address of the Microsoft SQL Server your CIS-CAT Pro instance is using.
- To use a specific named instance, the value supplied should be in the following format:
{server_host}``{instance_name}. - If no instance is supplied, the default instance will be used.
- To use a specific named instance, the value supplied should be in the following format:
- Port (default: 1433) - The required ports are:
- Microsoft SQL Server discovery port - 1433.
- The specific port for the supplied named instance, if relevant.
- Database (default: ccpd) - The name of the database inside the SQL Server.
- User Name - The credentials for a user account that has the required permissions to fetch assets.
Note
The best practice is to create a dedicated SQL local user for Axonius usage. For details on creating an Axonius user for Microsoft SQL Server, see Creating a Local Read-Only User for Microsoft SQL Server.
If you are using a domain user, specify the domain and the user name in the following format: domain\username.
- Password - The user's password. The password must not include ";".
- Database Type (default: MSSQL) - Select the database server as the source for data.
Optional Parameters
- MySQL Character Set - Specify a custom character set (encoding) for connections to MySQL databases. Example values: 'utf8', 'latin1'. When no character set is specified, 'utf8' is used by default.
Note:
This option is only valid when MySQL is selected from the Database Type dropdown.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
Advanced Settings
Note
Advanced settings can either apply to all connections for this adapter, or to a specific connection. Refer to Advanced Configuration for Adapters.
- SQL pagination (required, default: 1000) - Specify the number of results per page received for a given SQL query to gain better control on the performance of all connections for this adapter.
- Parse devices with database field as Databases - Select this option to parse devices with database field ("database.name") as Database assets.
- Aggregate Devices By Hostname - Select this option to aggregate devices by hostname.
- Parse Benchmark By Latest Member - Select this option to parse the latest benchmark from the value of the latest benchmark with a 'title_value' of 'Level 1 - Member Server'.
Note
To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.
Version Matrix
This adapter was only tested with the versions marked as supported, but may work with other versions. Contact Axonius Support if you have a version that is not listed, which is not functioning as expected.
| Version | Supported | Notes |
|---|---|---|
| 2.2.3 | Yes |
Troubleshooting
- "Login failed" - If you are using a domain user, in the User Name field, specify the domain and the user name in the following format: domain\username.
Updated 1 day ago