Supported security and compliance benchmarks

Tanzu Salt supports a variety of security and compliance benchmarks.

Note: Supported security and compliance benchmarks are updated independently of Tanzu product releases. To be notified when new benchmarks are supported, click the RSS feed icon RSS Feed icon to subscribe to this page.

Currently, Tanzu Salt supports these operating systems, and benchmarks:

Note: Some Linux systems, such as RHEL and SUSE, require an active connection to the Tanzu Salt repository. In the event of a repository connectivity issue or software installation failure:

  • Check network connectivity between the system and software repository.
  • Ensure there is adequate disk space on the system for new packages.
  • Ensure that your subscriptions are up-to-date on the system.

You can view the minion logs for more information on the issue.

Supported compliance benchmarks

OS Name OS Version Benchmark Authority Benchmark Version Benchmark Profiles
CentOS Linux 7 CIS v2.2.0 Level 1 - Server
Level 2 - Server
Level 1 - Workstation
Level 2 - Workstation
Debian Linux 9 CIS v1.0.0 Level 1 - Server
Level 2 - Server
Level 1 - Workstation
Level 2 - Workstation
Debian Linux 10 CIS v2.0.0 Level 1 - Server
Level 2 - Server
Level 1 - Workstation
Level 2 - Workstation
Microsoft Windows Server 2012 R2 CIS v2.3.0 Level 1 - Domain Controller
Level 1 - Member Server
Level 2 - Domain Controller
Level 2 - Member Server
Microsoft Windows Server 2016 R 1607 CIS v1.4.0 Level 1 - Domain Controller
Level 1 - Member Server
Level 2 - Domain Controller
Level 2 - Member Server
Next Generation Windows Security
Microsoft Windows Server 2019 R 1809 CIS v1.3.0 Level 1 - Domain Controller
Level 1 - Member Server
Level 2 - Domain Controller
Level 2 - Member Server
Next Generation Windows Security - Domain Controller
Next Generation Windows Security - Member Server
Microsoft Windows Server 2019 R3 STIG v2.0.0 Level 1 - Domain Controller
Level 1 - Member Server
Level 2 - Domain Controller
Level 2 - Member Server
Next Generation Windows Security - Domain Controller
Next Generation Windows Security - Member Server
Microsoft Windows Server 2022 CIS v1.0.0 Level 1 - Domain Controller
Level 1 - Member Server
Level 2 - Domain Controller
Level 2 - Member Server
Next Generation Windows Security - Domain Controller
Next Generation Windows Security - Member Server
Oracle Linux 7 CIS v2.1.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Photon 3 STIG N/A Category II
Category III
Red Hat Enterprise Linux 7 CIS v3.1.1 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Red Hat Enterprise Linux 8 CIS v2.0.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Red Hat Enterprise Linux 9 CIS v1.0.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Red Hat Enterprise Linux 7 STIG Version 2, Release 4 Category I
Category II
Category III
SUSE Enterprise Linux 12 SP4 CIS v2.1.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
SUSE Enterprise Linux 15 CIS v1.0.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Ubuntu Linux 16.04 LTS CIS v1.1.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Ubuntu Linux 18.04 LTS CIS v.1.0.0 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server
Ubuntu Linux 20.04 LTS CIS v.2.0.1 Level 1 - Workstation
Level 1 - Server
Level 2 - Workstation
Level 2 - Server

Supported vulnerability operating systems

Operating System Versions
CentOS 6
7
8
Red Hat Enterprise Linux 6
7
8
Oracle Linux 6
7
8
Ubuntu Linux 16.x
18.x
Windows Microsoft Windows 10
Microsoft Windows Server 2008+
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 R1607
Microsoft Windows Server 2019 R1809
Debian Debian 7 “Wheezy”
Debian 8 “Jessie”
Debian 9 “Stretch”
Debian 10 “Buster”

check-circle-line exclamation-circle-line close-line
Scroll to top icon