Puppet Comply enables continuous compliance across hybrid infrastructure with less overhead and manual work. Get a holistic view of compliance status throughout cloud and on-prem environments, generate reports to easily prove that systems remain in the desired state, and enforce immutable policy as code with expert-built content and modules configured to your environment.
CIS (Center for Internet Security) Level 1 benchmarks have hundreds of operating system settings contained in the benchmarks, and Puppet provides a ready-made Compliance Enforcement Modules (CEM) subscription service to achieve automation quickly. Puppet creates, maintains, and continually updates CEM to stay up-to-date with the CIS latest recommendations, so you can trust you are reducing your compliance risk by remaining in a compliant state.
Set and preserve compliant infrastructure configurations by automating the continuous enforcement of the desired state that aligns with your policies and security best practices.
Premium content subscriptions on the Puppet Forge offer exclusive module packages designed to solve your most challenging automation solutions. Each subscription grants you access to a set of modules, all updates, and guaranteed support for the lifetime of your subscription.
These subscriptions are in addition to our existing open source Supported modules; which will always remain available for anyone to use and commercially supported under the terms of your Puppet Enterprise license.
Current subscriptions include Comply CEM content, which allows you to uniformly enforce CIS compliance policies across your infrastructure. Watch this space for more content over the coming months!