Previous Topic: Compliance and Best Practice PoliciesNext Topic: Compliance and Best Practice Policies Scripts


Where Are Compliance and Best Practice Policies Stored?

The Enterprise Management Server stores the compliance and best practice policies on the DMS during installation. This is done automatically when you deploy a fresh installation of the Enterprise Management Server.

You manage the compliance and best practice policies from CA ControlMinder Enterprise Management in the Policy Management section.

On each new CA ControlMinder installation, the compliance and best practice policies are stored in the following location:

ACInstallDir/samples/Policies/OutOfTheBox
ACInstallDir

Defines the directory where CA ControlMinder is installed.

CA ControlMinder provides the policies as text files that contain the selang script that executes the policy. Each policy also has a matching policy that you can use to undeploy the protection policy. You deploy and undeploy the policies from CA ControlMinder Enterprise Management.

Sample policies have the following naming convention: REGULATION_ACTION

REGULATION

Defines the name of the regulation the policy is designed for.

ACTION

Specifies the policy action the script takes.

Values: deploy and undeploy

For example, the following file contains the sample deployment policy for the PCI DSS section 7.1.1: pci_dss_7.1.1_deploy.txt

Note: Compliance and best practice policies are OS independent and are applicable to Windows and UNIX systems.