Performing a vulnerability scan

As apadmin, you can perform a vulnerability scan of the Cloud Pak for Data System machine and generate a report.

Procedure

For RHEL 7

  1. Upload or use wget to download rhel-7.oval.xml.bz2.
  2. Run the command: 
    oscap oval eval --results rhsa-results-oval.xml --report vulnerability-report.html com.redhat.rhsa-RHEL7.xmlapuser
  3. Download and examine the vulnerability-report.html in a web browser.

For RHEL 8

  1. Upload or use wget to download rhel-8.oval.xml.bz2.
  2. Unzip the downloaded file to get the rhel-8.oval.xml file: 
     bzip2 -dk rhel-8.oval.xml.bz2
  3. Run the command: 
    oscap oval eval --results rhsa-results-oval.xml --report vulnerability-report.html rhel-8.oval.xml
  4. Download and examine the vulnerability-report.html in a web browser.