Run your desired compliance scan or an ad hoc scan on your nodes.
You can run scans on individual nodes by selecting the Scan
node drop-down on the node's Node detail page,
and then selecting desired compliance or
custom options if you have those set up. Then follow the
scan wizard as outlined in steps 4-7 on this help page.
You can also scan all nodes by selecting the Scan all nodes
drop-down on the Dashboard page, and then selecting
desired compliance or custom
options if you have those set up. Then follow the scan wizard as outlined in steps
4-7 on this help page.
-
In Comply, click
Scans, and then Run an ad hoc
scan.
-
In the Benchmark drop-down, select Desired
compliance or a benchmark and profile of your choice.
-
Next, select an option from the Profile drop-down. If
you want to use a custom profile for this scan, select the Use an
associated custom profile? option and choose the relevant option
from the Custom profile drop-down.
-
Click Next to review the PE credentials and
environment you want the scan to run on.
-
Click Next to see the nodes selected for scanning.
To only scan a subset of nodes, deselect any that you do not want to
include.
Debug mode: By default, assessor
logs are set to WARN level. If you need to troubleshoot an issue, you
can set the logging level to DEBUG for the scan by clicking
Run in debug mode. The assessor logs can then
be retrieved from the individual node.
On Linux and macOS platforms the assessor log is
located
at:
/opt/puppetlabs/comply/Assessor-CLI/logs/assessor-cli.log
On
Windows the assessor log is
located
at:
C:/ProgramData/PuppetLabs/comply/Assessor-CLI/logs/assessor-cli.log
Note
that scanning in debug mode increases the size of the assessor log
file significantly.
-
Click Scan.
You are taken to the Activity Feed, which lists each
scan. Scans are run as a task in PE. To see
the details of the job, click the job ID to be taken to PE.
Tip: You can also run a scan by clicking the Scan
nodes button at the top right corner on several pages. This
option uses the nodes listed on the page you are currently viewing.
-
In Comply, navigate to the
Dashboard page to see the results of your
scan.