About XDR Cloud Compliance

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

About XDR Cloud Compliance

L1 Bithead

Hello dear community, 

We noticed a feature called Cloud Compliance on Cortex XDR,  but we don't see any details.

What is this feature related to and from where to collect data?

Is there any documentation available about this feature since I couldn't find any related instructions in the help center?

 

Thanks.

 
1 accepted solution

Accepted Solutions

L5 Sessionator

Hi @Chilla ,

 

Thank you for writing to live community!

 

Cloud compliance is a feature which performs CIS benchmarking compliances check on the endpoint resources for linux and kubernetes agents. Though it is designed for cloud based linux assets and kubernetes hosts mainly, it is also capable of giving the same metric data for on prem linux appliances. As a result it gives you an overview of violations in terms of Cloud Security posture on your linux boxes in terms of linux and container compliances and also for kubernetes(in case if you have one).

 

To get the data, you need to enable “enable cloud compliance collection” under “XDR Pro” in Linux agent settings profile. The endpoints should have this data collection enabled for around 12 hours time to set the benchmarks and then your list should be populated.

 

Screenshot attached. Hope this helps

 

Please mark the response as “Accept as Solution” if it answers your query.

Screenshot 2023-07-12 at 4.02.45 PM.png

View solution in original post

1 REPLY 1

L5 Sessionator

Hi @Chilla ,

 

Thank you for writing to live community!

 

Cloud compliance is a feature which performs CIS benchmarking compliances check on the endpoint resources for linux and kubernetes agents. Though it is designed for cloud based linux assets and kubernetes hosts mainly, it is also capable of giving the same metric data for on prem linux appliances. As a result it gives you an overview of violations in terms of Cloud Security posture on your linux boxes in terms of linux and container compliances and also for kubernetes(in case if you have one).

 

To get the data, you need to enable “enable cloud compliance collection” under “XDR Pro” in Linux agent settings profile. The endpoints should have this data collection enabled for around 12 hours time to set the benchmarks and then your list should be populated.

 

Screenshot attached. Hope this helps

 

Please mark the response as “Accept as Solution” if it answers your query.

Screenshot 2023-07-12 at 4.02.45 PM.png

  • 1 accepted solution
  • 1264 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!