Add your PE credentials to Comply

To allow Comply to communicate with PE, you must add your PE credentials to Comply.

Before you begin
Make sure you have deployed Comply.

Adding your PE credentials authenticates Comply with Role Based Access Control (RBAC). Your PE account requires the following permissions:

Type Action Instance
Console View -
Job Orchestrator Start, stop and view jobs -
Node Groups View All
Nodes View node data from PuppetDB -
Tasks Run Tasks

Task: comply::backup_assessor

Permitted on: All nodes
Tasks Run Tasks

Task: comply::ciscat_scan

Permitted on: All nodes
User Roles View All
User Roles Create All
For more information on permissions, see User permissions and user roles.
  1. In Comply — located at https://<COMPLY-HOSTNAME>/ — click Settings.
  2. Click Puppet Enterprise instance.
  3. Enter your PE hostname, username, and password.
  4. Click Submit.
    Tip: You can refresh the PE node and fact information by clicking Refresh data.
Results
You’ll now see a list of your classified nodes on the Nodes page.
What to do next
You have completed the Comply setup process! You can now start running CIS scans on your nodes. If you're new to Comply, try out the beginner's guide.